Vulnerabilities (CVE)

Filtered by vendor Multi-website Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-3162 1 Multi-website 1 Multi Website 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Multi Website 1.5 allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to the default URI.
CVE-2009-3150 1 Multi-website 1 Multi Website 2024-02-04 7.5 HIGH N/A
SQL injection vulnerability in index.php in Multi Website 1.5 allows remote attackers to execute arbitrary SQL commands via the Browse parameter in a vote action.