Proms@0.7 Security Vulnerabilities and Issues — Proms@0.7 CVE List

Lucene search

ElectricmonkProms0.7

3 matches found

CVE•added 2005/05/24 4:0 a.m.•37 views

CVE-2005-1734

Multiple SQL injection vulnerabilities in PROMS before 0.11 allow remote attackers to execute arbitrary SQL commands via unknown vectors.

7.5CVSS8.9AI score0.00487EPSS

CVE•added 2005/05/24 4:0 a.m.•36 views

CVE-2005-1735

Multiple cross-site scripting (XSS) vulnerabilities in PROMS before 0.11 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.

4.3CVSS6AI score0.00335EPSS

CVE•added 2005/05/24 4:0 a.m.•33 views

CVE-2005-1736

PROMS 0.11 does not properly handle "certain combinations of rights," which gives more rights to users than intended.

7.5CVSS7AI score0.00394EPSS