CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-6042
https://notcve.org/view.php?id=CVE-2007-6042
20 Nov 2007 — PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Vulnerabilidad de inclusión remota de archivo en PHP en fehler.inc.php en SWSoft Confixx Professional 3.2.1 permite a atacantes remotos ejecutar código PHP de su elección a través de una URL en un parámetro no... • http://www.securityfocus.com/bid/26500 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.8EPSS: 4%CPEs: 1EXPL: 0CVE-2006-3180
https://notcve.org/view.php?id=CVE-2006-3180
23 Jun 2006 — Cross-site scripting (XSS) vulnerability in ftp_index.php in Confixx Pro 3.0 allows remote attackers to inject arbitrary web script or HTML via the path parameter. Vulnerabilidad de jecución de secuencias de comandos en sitios cruzados (XSS) en ftp_index.php en Confixx Pro v3.0 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro "path". • http://archives.neohapsis.com/archives/bugtraq/2006-06/0383.html •
CVSS: 6.1EPSS: 1%CPEs: 1EXPL: 0CVE-2006-3179
https://notcve.org/view.php?id=CVE-2006-3179
23 Jun 2006 — Cross-site scripting (XSS) vulnerability in tools_ftp_pwaendern.php in Confixx Pro 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the account parameter. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en tools_ftp_pwaendern.php en Confixx Pro v.3.0 y posiblemente en versiones anteriores, permite a atacantes remotos inyectar código script web de su elección o HTML a través del parámetro account. • http://secunia.com/advisories/20728 •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 1CVE-2006-2423 – Confixx 3.0/3.1 - 'index.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2006-2423
17 May 2006 — Cross-site scripting (XSS) vulnerability in ftplogin/index.php in Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the login parameter. • https://www.exploit-db.com/exploits/27884 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 4CVE-2006-1759 – SWSoft Confixx 3.1.2 - 'Jahr' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2006-1759
13 Apr 2006 — Cross-site scripting (XSS) vulnerability in allgemein_transfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter. • https://www.exploit-db.com/exploits/27623 •
CVSS: 9.8EPSS: 4%CPEs: 3EXPL: 3CVE-2006-1754 – SWSoft Confixx 3.0.6/3.0.8/3.1.2 - 'index.php' SQL Injection
https://notcve.org/view.php?id=CVE-2006-1754
13 Apr 2006 — SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter. • https://www.exploit-db.com/exploits/27628 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1302
https://notcve.org/view.php?id=CVE-2005-1302
26 Apr 2005 — SQL injection vulnerability in Confixx 3.08 and earlier allows remote attackers to execute arbitrary SQL commands via the "change user" field. • http://marc.info/?l=bugtraq&m=111444886429814&w=2 •