Vulnerabilities > Chipmunk Scripts > Medium

DATE CVE VULNERABILITY TITLE RISK
2011-04-27 CVE-2010-4799 SQL Injection vulnerability in Chipmunk-Scripts Pwngame 1.0
Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters to authenticate.php and the (3) ID parameter to pwn.php. 		6.8
6.8
2009-08-25 CVE-2008-7072 Cross-Site Scripting vulnerability in Chipmunk-Scripts Chipmunk Topsites
Cross-site scripting (XSS) vulnerability in index.php in Chipmunk Topsites allows remote attackers to inject arbitrary web script or HTML via the start parameter. 		4.3
4.3
2008-07-15 CVE-2008-3186 Cross-Site Scripting vulnerability in Chipmunk Scripts Chipmunk Blogger
Multiple cross-site scripting (XSS) vulnerabilities in Chipmunk Blog (Blogger) allow remote attackers to inject arbitrary web script or HTML via the membername parameter to (1) members.php, (2) comments.php, (3) photos.php, (4) archive.php, or (5) cat.php. 		4.3
4.3
2007-02-24 CVE-2006-7042 Cross-Site Scripting vulnerability in Chipmunk Directory
Cross-site scripting (XSS) vulnerability in directory/index.php in Chipmunk directory allows remote attackers to inject arbitrary web script or HTML via the start parameter. 		6.8
6.8
2006-06-02 CVE-2006-2757 Cross-Site Scripting vulnerability in Chipmunk Guestbook
Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows remote attackers to inject arbitrary web script or HTML via the (1) start parameter in (a) index.php; (2) forumID parameter in index.php, (b) newtopic.php, and (c) reply.php; and (3) ID parameter to (d) edit.php. 		4.3
4.3
2006-01-03 CVE-2006-0069 HTML Injection vulnerability in Chipmunk Guestbook Homepage
Cross-site scripting (XSS) vulnerability in addentry.php in Chipmunk Guestbook 1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the homepage parameter. 		4.3
4.3