Alstrasoft

Article Manager Pro

5 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2008-5649

Exploit
  • EPSS 0.7%
  • Published 17.12.2008 18:30:01
  • Last modified 09.04.2025 00:30:58

SQL injection vulnerability in admin/admin.php in AlstraSoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via the username parameter.

4.3

CVE-2007-4082

Exploit
  • EPSS 0.24%
  • Published 30.07.2007 17:30:00
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in contact_author.php AlstraSoft Article Manager Pro allows remote attackers to inject arbitrary web script or HTML via the userid parameter.

7.5

CVE-2006-2565

  • EPSS 0.82%
  • Published 24.05.2006 20:02:00
  • Last modified 03.04.2025 01:03:51

SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via (1) the author_id parameter in profile.php and (2) the aut_id parameter in userarticles.php. NOTE: the aut_id vector can ...

5

CVE-2006-2566

  • EPSS 0.4%
  • Published 24.05.2006 20:02:00
  • Last modified 03.04.2025 01:03:51

Alstrasoft Article Manager Pro 1.6 allows remote attackers to obtain sensitive information via (1) a quote character or possibly an invalid value in the action parameter in a request to mrarticles.php or (2) a login QUERY_STRING to admin.php without ...

4.3

CVE-2006-2567

  • EPSS 0.43%
  • Published 24.05.2006 20:02:00
  • Last modified 03.04.2025 01:03:51

Cross-site scripting (XSS) vulnerability in submit_article.php in Alstrasoft Article Manager Pro 1.6 allows remote attackers to inject arbitrary web script or HTML when submitting an article, as demonstrated using a javascript URI in a Cascading Styl...