CVE-2008-5054

Multiple SQL injection vulnerabilities in Develop It Easy Membership System 1.3 allow remote attackers to execute arbitrary SQL commands via the 1 email and 2 password parameters to customerlogin.php and the 3 username and 4 userpass parameters to admin/index.php. NOTE: some of these details are...

CVE-2005-2953

Cross-site scripting XSS vulnerability in merchant.mvc in MIVA Merchant 5 allows remote attackers to inject arbitrary web script or HTML via the CustomerLogin parameter...