Lucene search
Askme Pro Security Vulnerabilities
cve
SQL injection vulnerability in profile.php in AlstraSoft AskMe Pro 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: The que_id parameter to forum_answer.php is already covered by...
8.6AI Score
0.001EPSS
2008-06-30 06:24 PM
19
cve
Multiple SQL injection vulnerabilities in AlstraSoft AskMe Pro allow remote attackers to execute arbitrary SQL commands via the (1) que_id parameter to forum_answer.php or (2) the cat_id parameter to...
8.9AI Score
0.002EPSS
2007-07-30 05:30 PM
29
cve
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft AskMe Pro allow remote attackers to inject arbitrary web script or HTML via (1) the cat_id parameter to search.php or the (2) typ parameter to...
6.2AI Score
0.003EPSS
2007-07-30 05:30 PM
17