MidnightBSD

Advisories for butterfat

CVE-2005-3406 MEDIUM

Cross-site scripting (XSS) vulnerability in phpESP 1.7.5 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
butterfat phpesp 1.4_beta3
butterfat phpesp 1.7.5_dev2
butterfat phpesp 1.4_beta1
butterfat phpesp 1.5_rc2
butterfat phpesp 1.4_beta2
butterfat phpesp 1.5_final
butterfat phpesp 1.6_rc3
butterfat phpesp 1.7_dev
butterfat phpesp 1.5_rc3
butterfat phpesp 1.7.5
butterfat phpesp 1.6.1_final
butterfat phpesp 1.7.5_dev3
butterfat phpesp 1.6_final
butterfat phpesp 1.6_rc1
butterfat phpesp 1.7_rc1
butterfat phpesp 1.7.5_dev1
butterfat phpesp 1.3_final
butterfat phpesp 1.6_rc2
butterfat phpesp 1.7
butterfat phpesp 1.4_final
butterfat phpesp 1.5_rc1
butterfat phpesp 1.7.2
butterfat phpesp 1.7.1
CVE-2005-3407 HIGH

SQL injection vulnerability in phpESP 1.7.5 and earlier allows remote attackers to execute arbitrary SQL commands via unknown vectors.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
butterfat phpesp 1.4_beta3
butterfat phpesp 1.7.5_dev2
butterfat phpesp 1.4_beta1
butterfat phpesp 1.5_rc2
butterfat phpesp 1.4_beta2
butterfat phpesp 1.5_final
butterfat phpesp 1.6_rc3
butterfat phpesp 1.7_dev
butterfat phpesp 1.5_rc3
butterfat phpesp 1.7.5
butterfat phpesp 1.6.1_final
butterfat phpesp 1.7.5_dev3
butterfat phpesp 1.6_final
butterfat phpesp 1.6_rc1
butterfat phpesp 1.7_rc1
butterfat phpesp 1.7.5_dev1
butterfat phpesp 1.3_final
butterfat phpesp 1.6_rc2
butterfat phpesp 1.7
butterfat phpesp 1.4_final
butterfat phpesp 1.5_rc1
butterfat phpesp 1.7.2
butterfat phpesp 1.7.1