Stefan Frech » Online-bookmarks : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.8
EPSS Score
1.70%
Published
2006-12-07
Updated
2017-07-29
SQL injection vulnerability in the login function in auth.inc in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to execute arbitrary SQL commands via the (1) username and possibly the (2) password parameter. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.97%
Published
2006-12-07
Updated
2017-07-29
2 vulnerabilities found