Interchange Development Group: >> Interchange >> 4.8.8 Security Vulnerabilities
Unspecified vulnerability in Interchange before 5.6.0 and before 5.5.2 allows remote attackers to cause a denial of service via crafted HTTP requests. NOTE: this might overlap CVE-2007-2635.
CVSS Score
10.0
EPSS Score
0.037
Published
2008-05-23
Interchange before 5.0.1 allows remote attackers to "expose the content of arbitrary variables" and read or modify sensitive SQL information via an HTTP request ending with the "__SQLUSER__" string.
CVSS Score
6.4
EPSS Score
0.06
Published
2004-05-04