Filtered by vendor Enorth Subscriptions
Filtered by product Webpublisher Cms Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2015-5617 1 Enorth 1 Webpublisher Cms 2020-02-14 9.8 Critical
SQL injection vulnerability in pub/m_pending_news/delete_pending_news.jsp in Enorth Webpublisher CMS allows remote attackers to execute arbitrary SQL commands via the cbNewsId parameter.
CVE-2013-6985 1 Enorth 1 Webpublisher Cms 2013-12-11 N/A
SQL injection vulnerability in m_worklog/log_searchday.jsp in Enorth Webpublisher CMS, possibly 5.0 and earlier, allows remote attackers to execute arbitrary SQL commands via the thisday parameter.