2 matches found
CVE-2008-6847
CVE-2008-6847 describes a cross-site scripting (XSS) vulnerability in the Pre ASP Job Board, specifically in the login flow at Employee/emp_login.asp. The issue arises from the msg parameter, allowing remote attackers to inject arbitrary web script or HTML. According to the NVD metrics, the base ...
CVE-2008-6329
The CVE-2008-6329 entry concerns a SQL injection vulnerability in Pre ASP Job Board, reported in Employee/login.asp (and reachable from Employee/emp_login.asp). The vulnerability is triggered by the Username and Password parameters, allowing remote attackers to execute arbitrary SQL commands. The...