Vulnerabilities (CVE)

Filtered by vendor Ocean12tech Subscribe
Filtered by product Contact Manager Pro
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6370 1 Ocean12tech 1 Contact Manager Pro 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to inject arbitrary web script or HTML via the DisplayFormat parameter.
CVE-2008-6369 1 Ocean12tech 1 Contact Manager Pro 2024-02-04 7.5 HIGH N/A
SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to execute arbitrary SQL commands via the Sort parameter.