Variomat: Security Vulnerabilities
SQL injection vulnerability in news.php in VARIOMAT allows remote attackers to execute arbitrary SQL commands via the subcat parameter.
CVSS Score
7.5
EPSS Score
0.005
Published
2006-06-01
Cross-site scripting (XSS) vulnerability in news.php in VARIOMAT allows remote attackers to inject arbitrary HTML or web script via the subcat parameter. NOTE: this issue might be resultant from SQL injection.
CVSS Score
6.8
EPSS Score
0.007
Published
2006-06-01