Lucene search
The Media Shoppe Berhad Security Vulnerabilities
cve
Cross-site scripting (XSS) vulnerability in search.cfm in tmsPUBLISHER 3.3 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
6AI Score
0.008EPSS
2006-02-15 11:00 AM
26
cve
_Request_Message.cfm in tmsPUBLISHER 3.3 allows remote attackers to obtain sensitive information via an invalid id argument to pagename.cfm, which reveals the installation path in an error message.
6.6AI Score
0.007EPSS
2006-02-15 11:00 AM
18