Discountedscripts » Acg Ptp : Security Vulnerabilities, CVEs,

CVE-2008-3944

SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitrary SQL commands via the adid parameter in an adorder action.
Max CVSS
7.5
EPSS Score
0.06%
Published
2008-09-05
Updated
2017-09-29

CVE-2008-3782

Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in ACG-PTP 1.0.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) Category name field under Advertisement Packages, the (2) Reason field under Credit/Debit Users, and the (3) FAQ question and (4) FAQ answer fields under Add New FAQ Entry.
Max CVSS
3.5
EPSS Score
0.10%
Published
2008-08-26
Updated
2017-08-08
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close