Vulnerabilities > Censura > Censura > 1.16.04
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-24 | CVE-2009-2594 | Cross-Site Scripting vulnerability in Censura 1.16.04 Cross-site scripting (XSS) vulnerability in censura.php in Censura 1.16.04 allows remote attackers to inject arbitrary web script or HTML via the itemid parameter in a details action. | 4.3 |
2009-07-24 | CVE-2009-2593 | SQL Injection vulnerability in Censura 1.16.04 SQL injection vulnerability in censura.php in Censura 1.16.04 allows remote attackers to execute arbitrary SQL commands via the itemid parameter in a details action. | 7.5 |