3 matches found
CVE-2005-4363
Cross-site scripting XSS vulnerability in the search engine in Komodo CMS 2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters...
CVE-2005-4363
The CVE-2005-4363 entry describes a Cross-site scripting (XSS) flaw in Komodo CMS 2.1, specifically in the search engine. The vulnerability allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters. The NVD metrics list a base score of 5.8 (Medium) with netw...
CVE-2005-4362
The CVE-2005-4362 entry concerns a SQL injection vulnerability in Komodo CMS 2.1, exploitable via the page parameter in page.php. The vulnerability could allow remote attackers to execute arbitrary SQL commands. According to NVD, the impact is partial integrity loss with no confidentiality or ava...