Variomat - Variomat CVE

Filtered by vendor Variomat Subscribe

Filtered by product Variomat

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-2720	1 Variomat	1 Variomat	2024-02-04	7.5 HIGH	N/A
SQL injection vulnerability in news.php in VARIOMAT allows remote attackers to execute arbitrary SQL commands via the subcat parameter.
CVE-2006-2721	1 Variomat	1 Variomat	2024-02-04	6.8 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in news.php in VARIOMAT allows remote attackers to inject arbitrary HTML or web script via the subcat parameter. NOTE: this issue might be resultant from SQL injection.

Vulnerabilities (CVE)