Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2014-9435
- EPSS 0.78%
- Published 02.01.2015 19:59:04
- Last modified 12.04.2025 10:46:40
Multiple SQL injection vulnerabilities in Absolut Engine 1.73 allow remote authenticated users to execute arbitrary SQL commands via the (1) sectionID parameter to admin/managersection.php, (2) userID parameter to admin/edituser.php, (3) username par...
3.5
CVE-2014-9434
- EPSS 0.46%
- Published 02.01.2015 19:59:03
- Last modified 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in admin/managerrelated.php in the administrative backend in Absolut Engine 1.73 allows remote authenticated users to inject arbitrary web script or HTML via the title parameter.
1