IwebnegarCVEs & Vulnerabilities
3 CVEs affecting Iwebnegar products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
iwebnegar 3
CVE-2006-4496MEDIUM
Cross-site scripting (XSS) vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to inject arbitrary web script or HTML via the comment parameter.
1 Sep 2006
4.3
CVSS
CVE-2006-4497HIGHpoc
SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
1 Sep 2006
7.5
CVSS
CVE-2004-1402CRITICALpoc
SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page.
31 Dec 2004
10.0
CVSS
← PrevPage 1 / 1Next →