X-scripts

X-statistics

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2006-3950

Exploit
  • EPSS 1.04%
  • Published 01.08.2006 21:04:00
  • Last modified 03.04.2025 01:03:51

SQL injection vulnerability in x-statistics.php in X-Scripts X-Statistics 1.20 allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header.

7.5

CVE-2006-3959

Exploit
  • EPSS 0.55%
  • Published 01.08.2006 21:04:00
  • Last modified 03.04.2025 01:03:51

SQL injection vulnerability in protect.php in X-Scripts X-Protection 1.10, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameter.