RSS   Vulnerabilities for 'Maian greeting'   RSS

2008-05-14
 
CVE-2008-2209

CWE-79
 
 
Multiple cross-site scripting (XSS) vulnerabilities in admin/inc/header.php in Maian Greeting 2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) msg_script and (2) msg_script2 parameters.

 
 
CVE-2008-2208

CWE-89
 
 
SQL injection vulnerability in index.php in Maian Greeting 2.1 allows remote attackers to execute arbitrary SQL commands via the keywords parameter in a search action.

 

 >>> Vendor: Maianscriptworld 13 Products
Maian cart
Maian weblog
Maian recipe
Maian uploader
Maian search
Maian music
Maian gallery
Maian greeting
Maian support
Maian guestbook
Maian links
Maian greetings
Maianaffiliate

Copyright 2024, cxsecurity.com

 

Back to Top