Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2012-5873 | 1 Arc2 Project | 1 Arc2 | 2024-11-21 | N/A | 5.3 MEDIUM |
ARC (aka ARC2) through 2011-12-01 allows reflected XSS via the end_point.php query parameter in an output=htmltab action. | |||||
CVE-2012-5872 | 1 Arc2 Project | 1 Arc2 | 2024-11-21 | N/A | 9.8 CRITICAL |
ARC (aka ARC2) through 2011-12-01 allows blind SQL Injection in getTriplePatternSQL in ARC2_StoreSelectQueryHandler.php via comments in a SPARQL WHERE clause. |