Filtered by vendor Digiappz Subscriptions
Filtered by product Digirez Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-0128 1 Digiappz 1 Digirez 2025-04-09 N/A
SQL injection vulnerability in info_book.asp in Digirez 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the book_id parameter.
CVE-2007-2880 1 Digiappz 1 Digirez 2025-04-09 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Digirez 3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) Room_name parameter to room/info_book.asp or the (2) curYear parameter to room/week.asp.