MidnightBSD

Advisories for miva

CVE-1999-0264 MEDIUM

htmlscript CGI program allows remote read access to files.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
miva htmlscript *
CVE-2005-2953 MEDIUM

Cross-site scripting (XSS) vulnerability in merchant.mvc in MIVA Merchant 5 allows remote attackers to inject arbitrary web script or HTML via the Customer_Login parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
miva miva_merchant 5.0