Oneorzero: Security Vulnerabilities
SQL injection vulnerability in index.php in OneOrZero 1.6.3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in the kans action.
CVSS Score
7.5
EPSS Score
0.012
Published
2006-03-30
SQL injection vulnerability in one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to modify arbitrary ticket number descriptions via the sg parameter.
CVSS Score
5.0
EPSS Score
0.025
Published
2003-06-09
one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to create administrator accounts by directly calling the install.php Helpdesk Installation script.
CVSS Score
10.0
EPSS Score
0.081
Published
2003-06-09
Page 2