Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2009-0886

Disclosure Date: March 12, 2009 (last updated October 04, 2023)
Directory traversal vulnerability in login.php in OneOrZero Helpdesk 1.6.5.7 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the default_language parameter.
0
0
Attacker Value
Unknown

CVE-2006-4351

Disclosure Date: August 24, 2006 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in index.php in OneOrZero 1.6.4.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
0
0
Attacker Value
Unknown

CVE-2006-4350

Disclosure Date: August 24, 2006 (last updated October 04, 2023)
SQL injection vulnerability in index.php in OneOrZero 1.6.4.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
0
0