Lucene search

Alan Ward Security Vulnerabilities

cve

CVE-2006-6111

Multiple SQL injection vulnerabilities in Alan Ward A-Cart Pro 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) productid parameter in product.asp or (2) search parameter in search.asp. NOTE: the category.asp vector is already covered by...

8.9AI Score

0.007EPSS

2006-11-26 10:07 PM

cve

CVE-2006-6831

SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote attackers to execute arbitrary SQL commands via the catcode...

9.3AI Score

0.002EPSS

2006-12-31 05:00 AM

cve

CVE-2006-2948

A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain username and password...

7.7AI Score

0.009EPSS

2006-06-12 08:06 PM

cve

CVE-2005-4064

Multiple SQL injection vulnerabilities in A-FAQ 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) faqid parameter to faqDspItem.asp and (2) catcode parameter to...

9.5AI Score

0.004EPSS

2005-12-07 11:03 AM