IDCVSSSummaryLast (major) updatePublished
CVE-2010-3267 6.5
Multiple SQL injection vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to execute arbitrary SQL commands via (1) the qu_id parameter to bugs.aspx, (2) the row_id parameter to delete_query.aspx, the (3) new_project or (
08-12-2010 - 00:00 02-12-2010 - 11:22
CVE-2010-3266 3.5
Multiple cross-site scripting (XSS) vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via (1) the pcd parameter to edit_bug.aspx, (2) the bug_id parameter to edit_comment.aspx, (3)
08-12-2010 - 00:00 02-12-2010 - 11:22
CVE-2010-3188 7.5
SQL injection vulnerability in search.aspx in BugTracker.NET 3.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via a custom field to the search page.
01-09-2010 - 00:00 31-08-2010 - 16:00
Back to Top Mark selected
Back to Top