IDCVSSSummaryLast (major) updatePublished
CVE-2010-4946 7.5
SQL injection vulnerability in product_info.php in ALLPC 2.5 allows remote attackers to execute arbitrary SQL commands via the products_id parameter.
14-05-2012 - 04:00 09-10-2011 - 10:55
CVE-2010-4947 4.3
Cross-site scripting (XSS) vulnerability in advanced_search_result.php in ALLPC 2.5 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.
14-05-2012 - 04:00 09-10-2011 - 10:55
Back to Top Mark selected
Back to Top