CVE Tools

ocean12 technologies

Enterprise Softwarecommercial

12

Cumulative CVEs

4

Monthly snapshots

#19

Peak rank

Top products

mailing list manager3

Latest CVEs

The 14 most recently published vulnerabilities affecting ocean12 technologies.

CVE-2008-5980Ocean12 Mailing List Manager Gold stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for o12mail.mdb.5.0Jan 27, 2009
CVE-2008-5979Cross-site scripting (XSS) vulnerability in default.asp in Ocean12 Mailing List Manager Gold allows remote attackers to inject arbitrary web script or HTML via the Email parameter.4.3Jan 27, 2009
CVE-2008-5978Multiple SQL injection vulnerabilities in Ocean12 Mailing List Manager Gold allow remote attackers to execute arbitrary SQL commands via the Email parameter to (1) default.asp and (2) s_edit.asp.7.5Jan 27, 2009
CVE-2008-5130Ocean12 Calendar Manager Gold 2.04 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct reque...5.0Nov 18, 2008
CVE-2008-5129Ocean12 Poll Manager Pro 1.00 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to...5.0Nov 18, 2008
CVE-2008-5128Ocean12 Membership Manager Pro stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request t...5.0Nov 18, 2008
CVE-2008-5127Ocean12 Contact Manager Pro 1.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request...5.0Nov 18, 2008
CVE-2006-2265Cross-site scripting vulnerability in admin/main.asp in Ocean12 Calendar Manager Pro 1.00 allows remote attackers to inject arbitrary web script or HTML via the date parameter. NOTE: the provenanc...2.6May 9, 2006
CVE-2006-2264Multiple SQL injection vulnerabilities in Ocean12 Calendar Manager Pro 1.00 allow remote attackers to execute arbitrary SQL commands via the (1) date parameter to admin/main.asp, (2) SearchFor para...6.5May 9, 2006
CVE-2005-4657Ocean12 Calendar Manager Pro 1.01 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to /admin/view.asp. NOTE: the provenance of this informatio...7.5Jan 16, 2006
CVE-2005-1419SQL injection vulnerability in the admin login panel for Ocean12 Mailing List Manager 1.06 allows remote attackers to execute arbitrary SQL commands via the Admin_id parameter.7.5May 3, 2005
CVE-2005-1223Multiple SQL injection vulnerabilities in Ocean12 Calendar manager 1.01 allow remote attackers to execute arbitrary SQL commands via the Admin_id field.7.5Apr 22, 2005
CVE-2005-1096SQL injection vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote attackers to execute arbitrary SQL commands via the UserID parameter.7.5Apr 13, 2005
CVE-2005-1095Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote attackers to inject arbitrary web script or HTML via the page parameter.4.3Apr 13, 2005