Dcp-portal@6.0 Security Vulnerabilities and Issues — Dcp-portal@6.0 CVE List

Lucene search

Codeworx TechnologiesDcp-portal6.0

3 matches found

CVE•added 2005/12/14 11:3 a.m.•42 views

CVE-2005-4227

Multiple "potential" SQL injection vulnerabilities in DCP-Portal 6.1.1 might allow remote attackers to execute arbitrary SQL commands via (1) the password and username parameters in advertiser.php, (2) the aid parameter in announcement.php, (3) the dcp5_member_id, year, agid, day, day_s, hour, minu...

7.5CVSS8.5AI score0.03544EPSS

CVE•added 2006/01/16 9:3 p.m.•37 views

CVE-2006-0220

Multiple cross-site scripting (XSS) vulnerabilities in DCP-Portal 5.3 through 6.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) the day parameter in calendar.php and (2) the input form in search.php. NOTE: the provenance of this information is unknown; the details are obta...

4.3CVSS6.3AI score0.03544EPSS

CVE•added 2005/10/30 2:34 p.m.•33 views

CVE-2005-3365

Multiple SQL injection vulnerabilities in DCP-Portal 6 and earlier allow remote attackers to execute arbitrary SQL commands, possibly requiring encoded characters, via (1) the name parameter in register.php, (2) the email parameter in lostpassword.php, (3) the year parameter in calendar.php, and th...

7.5CVSS8.3AI score0.02116EPSS