RSS   Vulnerabilities for 'Vcd-db'   RSS

2006-09-08
 
CVE-2006-4628

 

 
Cross-site scripting (XSS) vulnerability in VCD-db before 0.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors when handling comments.

 
2005-12-14
 
CVE-2005-4241

 

 
Cross-site scripting (XSS) vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter.

 
 
CVE-2005-4240

 

 
SQL injection vulnerability in search.php in VCD-db 0.98 and earlier allows remote attackers to execute arbitrary SQL commands via the by parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top