CVE-2008-3058 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Octeth Oempro 3.5.5.1, and possibly other versions before 4, allow remote attackers to execute…
CVE-2008-3057 — CVSS 5.0 (medium): Octeth Oempro 3.5.5.1, and possibly other versions before 4, does not set the secure flag for the PHPSESSID cookie in an https session…
CVE-2008-3059 — CVSS 4.0 (medium): member/settings_account.php in Octeth Oempro 3.5.5.1, and possibly other versions before 4, uses cleartext to transmit a password entered…