Vcd-db : Security vulnerabilities, CVEs published in 2005

CVE-2005-4241

Cross-site scripting (XSS) vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter.

Max CVSS

4.3

EPSS Score

0.79%

Published

2005-12-14

Updated

2011-03-08

CVE-2005-4240

SQL injection vulnerability in search.php in VCD-db 0.98 and earlier allows remote attackers to execute arbitrary SQL commands via the by parameter.

Max CVSS

7.5

EPSS Score

0.23%

Published

2005-12-14

Updated

2008-09-20

2 vulnerabilities found

Vcd-db : Security Vulnerabilities, CVEs, Published In 2005

CVE-2005-4241

CVE-2005-4240