Vulnerabilities > 2Z Project > 2Z Project > 0.9.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-30 | CVE-2007-2905 | SQL-Injection vulnerability in 2Z Project 2Z Project 0.9.5 SQL injection vulnerability in includes/rating.php in 2z Project 0.9.5 allows remote attackers to execute arbitrary SQL commands via the post_id parameter. | 7.5 |
2007-05-30 | CVE-2007-2898 | SQL Injection vulnerability in 2Z Project 2Z Project 0.9.5 SQL injection vulnerability in includes/rating.php in 2z Project 0.9.5 allows remote attackers to execute arbitrary SQL commands via the rating parameter to index.php. | 7.5 |