Vulnerabilities > Abledating > Abledating > 2.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-03-31 | CVE-2008-6572 | SQL Injection vulnerability in Abledating 2.4 SQL injection vulnerability in search_results.php in ABK-Soft AbleDating 2.4 allows remote attackers to execute arbitrary SQL commands via the keyword parameter. | 6.8 |
| 2009-03-06 | CVE-2008-6439 | Cross-Site Scripting vulnerability in Abledating 2.4 Cross-site scripting (XSS) vulnerability in search_results.php in ABK-Soft AbleDating 2.4 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter. | 4.3 |