Lucene search

Orbitscripts Security Vulnerabilities

cve

CVE-2005-3814

Multiple cross-site scripting (XSS) vulnerabilities in SmartPPC Pro allow remote attackers to inject arbitrary web script or HTML via the username parameter in (1) directory.php, (2) frames.php, and (3)...

6AI Score

0.017EPSS

2005-11-26 02:03 AM

cve

CVE-2014-2540

SQL injection vulnerability in OrbitScripts Orbit Open Ad Server before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the site_directory_sort_field parameter to...

8.4AI Score

0.001EPSS

2014-04-11 02:55 PM

cve

CVE-2008-3152

SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory...

8.4AI Score

0.001EPSS

2008-07-11 10:41 PM

cve

CVE-2006-2140

Multiple cross-site scripting (XSS) vulnerabilities in OrbitHYIP 2.0 and earlier allow remote attackers to inject arbitrary web script via the (1) referral parameter to signup.php or (2) id parameter to...

6AI Score

0.006EPSS

2006-05-02 10:02 AM