Free Lan Intra Internet Portal » Free Lan Intra Internet Portal : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in error messages in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, different vectors than CVE-2007-0611.
Max CVSS
6.8
EPSS Score
0.50%
Published
2007-02-03
Updated
2017-07-29
Multiple SQL injection vulnerabilities in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some sources mention the escape_sqlData, implode_sql, and implode_sqlIn functions, but these are protection schemes, not the vulnerable functions.
Max CVSS
7.5
EPSS Score
0.36%
Published
2007-02-03
Updated
2017-07-29
Multiple cross-site scripting (XSS) vulnerabilities in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) inc.page.php and (2) inc.text.php.
Max CVSS
6.8
EPSS Score
0.50%
Published
2007-01-31
Updated
2011-03-08
3 vulnerabilities found