Vulnerabilities > Boutikone

DATE CVE VULNERABILITY TITLE RISK
2010-09-22 CVE-2010-3479 SQL Injection vulnerability in Boutikone 1.0
SQL injection vulnerability in list.php in BoutikOne 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.
network
low complexity
boutikone CWE-89
7.5
2008-11-18 CVE-2008-5126 Cross-Site Scripting vulnerability in Boutikone CMS
Cross-site scripting (XSS) vulnerability in search.php in BoutikOne CMS allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
network
boutikone CWE-79
4.3