Every CVE whose affected-product data names Duware Duclassified, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2004-2202 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in DUware DUclassified 4.0 through 4.2 allows remote attackers to bypass authentication and execute…
CVE-2005-3976 — CVSS 7.5 (high): SQL injection vulnerability in type.asp, as used in multiple DUware products including (1) DUamazon 3.1, (2) DUarticle 1.1, (3)…
CVE-2006-6354 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in detail.asp in DuWare DuNews allow remote attackers to execute arbitrary SQL commands via the (1)…
CVE-2006-2132 — CVSS 6.4 (medium): SQL injection vulnerability in detail.asp in DUclassified allows remote attackers to execute arbitrary SQL commands via the iPro parameter…
CVE-2004-2199 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in DUware DUclassified 4.0 allows remote attackers to inject arbitrary web script or HTML via the…