2 matches found
CVE-2002-0960
CVE-2002-0960 describes multiple cross-site scripting vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier . The flaws allow remote attackers to execute arbitrary script in the context of other CBMS users, implying user-session impact and potential credential exposure via manipulated inputs. The...
CVE-2002-0961
The CVE-2002-0961 entry concerns Voxel Dot Net CBMS 0.7 and earlier. Affected software: Voxel Dot Net CBMS (0.7 and earlier). Vulnerability: remote attackers may perform unauthorized operations as other users, for example deleting clients via dltclnt.php, with potential SQL injection in play. Roo...