Online Banking@* Security Vulnerabilities and Issues — Online Banking@* CVE List

Lucene search

W2bOnline Banking*

4 matches found

CVE•added 2007/06/11 10:30 p.m.•46 views

CVE-2007-3175

Multiple SQL injection vulnerabilities in W2B Online Banking allow remote attackers to execute arbitrary SQL commands via (1) the draft parameter to mailer.w2b or (2) the listDocPay parameter to DocPay.w2b.

7.5CVSS8.5AI score0.00545EPSS

CVE•added 2006/04/21 10:2 p.m.•42 views

CVE-2006-1980

Cross-site scripting (XSS) vulnerability in W2B Online Banking allows remote attackers to inject arbitrary web script or HTML via the (1) query string, (2) SID parameter, or (3) ilang parameter.

2.6CVSS5.6AI score0.00622EPSS

CVE•added 2007/06/11 10:30 p.m.•40 views

CVE-2007-3174

Cross-site scripting (XSS) vulnerability in auth.w2b in W2B Online Banking allows remote attackers to inject arbitrary web script or HTML via the adtype parameter, a different vector than CVE-2006-1980.

4.3CVSS5.6AI score0.00622EPSS

CVE•added 2008/04/18 10:5 p.m.•34 views

CVE-2008-1893

PHP remote file inclusion vulnerability in index.php in W2B Online Banking allows remote attackers to execute arbitrary PHP code via a URL in the ilang parameter.

7.5CVSS7.5AI score0.01076EPSS