Mini Web Shop@2.1.c Security Vulnerabilities and Issues — Mini Web Shop@2.1.c CVE List

Lucene search

Obie WebsiteMini Web Shop2.1.c

2 matches found

CVE•added 2006/12/26 11:28 p.m.•36 views

CVE-2006-6734

Cross-site scripting (XSS) vulnerability in modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote attackers to inject arbitrary web script or HTML via the catname parameter.

4.3CVSS5.6AI score0.00507EPSS

CVE•added 2006/12/26 11:28 p.m.•34 views

CVE-2006-6735

modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote attackers to obtain sensitive information via a request with an arbitrary catname parameter but no itemsdb parameter, which reveals the path in an error message. NOTE: CVE analysis suggests that this error ...

5CVSS6.7AI score0.00187EPSS