CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0CVE-2005-4663
https://notcve.org/view.php?id=CVE-2005-4663
Cross-site scripting (XSS) vulnerability in OcoMon 1.20, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. • http://secunia.com/advisories/17470 http://sourceforge.net/project/showfiles.php?group_id=45554 http://sourceforge.net/project/shownotes.php?release_id=369163 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2005-4664 – Ocomon 2.0 - SQL Injection
https://notcve.org/view.php?id=CVE-2005-4664
SQL injection vulnerability in OcoMon 1.21, and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the logon page, a different vulnerability than CVE-2005-4662. • https://www.exploit-db.com/exploits/40285 http://secunia.com/advisories/17470 http://sourceforge.net/project/showfiles.php?group_id=45554 http://www.osvdb.org/20751 https://exchange.xforce.ibmcloud.com/vulnerabilities/23085 •
CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 0CVE-2005-4662
https://notcve.org/view.php?id=CVE-2005-4662
Multiple SQL injection vulnerabilities in OcoMon 1.20, and possibly earlier versions, allow remote attackers to execute arbitrary SQL commands via unknown attack vectors in an unspecified input form, a different vulnerability than CVE-2005-4664. • http://secunia.com/advisories/17470 http://sourceforge.net/project/showfiles.php?group_id=45554 http://sourceforge.net/project/shownotes.php?release_id=369163 http://www.osvdb.org/20751 http://www.securityfocus.com/bid/15386 https://exchange.xforce.ibmcloud.com/vulnerabilities/23085 •