CVE-2006-6851

The CVE-2006-6851 entry documents multiple XSS vulnerabilities in ac4p Mobilelib gold 2, specifically in contact_us.php, exploitable via the (1) email and (2) errr parameters. Affected software is the Mobilelib gold 2 package; the underlying issue is improper input handling in contact_us.php that...

CVE-2009-2788

CVE-2009-2788 concerns multiple SQL injection vulnerabilities in Mobilelib GOLD 3. remote attackers can execute arbitrary SQL via (1) adminName in cp/auth.php, (2) cid in artcat.php, and (3) catid in show.php. CVSSv2 base score 7.5 (HIGH) with network access and low attack complexity; no exploita...