Allpc Security Vulnerabilities and Issues — Allpc CVE List

Lucene search

AllpcscriptAllpc

2 matches found

CVE•added 2011/10/09 10:55 a.m.•38 views

CVE-2010-4947

Cross-site scripting (XSS) vulnerability in advanced_search_result.php in ALLPC 2.5 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.

4.3CVSS5.9AI score0.00359EPSS

CVE•added 2011/10/09 10:55 a.m.•34 views

CVE-2010-4946

SQL injection vulnerability in product_info.php in ALLPC 2.5 allows remote attackers to execute arbitrary SQL commands via the products_id parameter.

7.5CVSS8.7AI score0.00291EPSS