| Max CVSS | 7.5 | Min CVSS | 6.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-5952 | 6.0 |
SQL injection vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the tid parameter in a vtech action to the default URI.
|
29-09-2017 - 01:32 | 23-01-2009 - 19:00 | |
| CVE-2008-5953 | 7.5 |
Directory traversal vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter to the default URI.
|
29-09-2017 - 01:32 | 23-01-2009 - 19:00 | |
| CVE-2008-5954 | 6.8 |
SQL injection vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the lname parameter in a login action to an unspecified component. NOTE: the
|
08-08-2017 - 01:33 | 23-01-2009 - 19:00 |