Lucene search
Xtreme ScriptsXtreme Topsites
2 matches found
CVE-2006-2543
Xtreme Topsites 1.1 allows remote attackers to trigger MySQL errors and possibly conduct SQL injection attacks via unspecified vectors in join.php.
5.1CVSS7.7AI score0.00816EPSS
CVE-2006-2544
Multiple SQL injection vulnerabilities in Xtreme Topsites 1.1, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) searchthis parameter in lostid.php and (2) id parameter in stats.php. NOTE: the provenance of this information is unknown; portions of ...
5.1CVSS8.3AI score0.00487EPSS