Swsoft: >> Confixx >> 3.1.2 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in allgemein_transfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter.
CVSS Score
2.6
EPSS Score
0.008
Published
2006-04-13
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter.
CVSS Score
7.5
EPSS Score
0.016
Published
2006-04-13