Vulnerabilities > Alexandre Dubus
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-23 | CVE-2010-1052 | Cross-Site Scripting vulnerability in Alexandre Dubus Audistat 1.3 Multiple cross-site scripting (XSS) vulnerabilities in index.php in AudiStat 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) year and (2) mday parameters. | 4.3 |
2010-03-23 | CVE-2010-1051 | SQL Injection vulnerability in Alexandre Dubus Audistat 1.3 Multiple SQL injection vulnerabilities in index.php in AudiStat 1.3 allow remote attackers to execute arbitrary SQL commands via the (1) year and (2) month parameters. | 7.5 |
2010-03-23 | CVE-2010-1050 | SQL Injection vulnerability in Alexandre Dubus Audistat 1.3 SQL injection vulnerability in index.php in AudiStat 1.3 allows remote attackers to execute arbitrary SQL commands via the mday parameter. | 7.5 |