almnzm vulnerabilities and exploits

7.5
CVSSv2
CVE-2010-5055

SQL injection vulnerability in index.php in Almnzm 2.1 allows remote attackers to execute arbitrary SQL commands via the id parameter....

Almnzm
5
CVSSv2
CVE-2007-3173

Almnzm allows remote attackers to obtain sensitive information via an activateorder request to index.php with an invalid orderid parameter, probably related to '[' and ']' characters....