Vulnerabilities > CJ Design

DATE CVE VULNERABILITY TITLE RISK
2009-10-01 CVE-2009-3509 Cross-Site Scripting vulnerability in Cj-Design CJ Dynamic Poll 2.0
Cross-site scripting (XSS) vulnerability in admin/admin_index.php in CJ Dynamic Poll PRO 2.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
network
cj-design CWE-79
4.3
2006-09-14 CVE-2006-4797 Cross-Site Scripting vulnerability in CJ Design CJ TAG Board 3.0
Cross-site scripting (XSS) vulnerability in tag.php in CloudNine Interactive CJ Tag Board 3.0 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a url BBcode tag in the cjmsg parameter.
network
cj-design
4.3
2006-08-30 CVE-2006-4451 Unspecified vulnerability in CJ Design CJ TAG Board 3.0
Direct static code injection vulnerability in CJ Tag Board 3.0 allows remote attackers to execute arbitrary PHP code via the (1) User-Agent HTTP header in tag.php, which is executed by all.php, and (2) the banned parameter in admin_index.php.
network
low complexity
cj-design
7.5
2005-09-14 CVE-2005-2899 Unspecified vulnerability in CJ Design CJ TAG Board 3.0
Multiple cross-site scripting (XSS) vulnerabilities in details.php in CjTagBoard 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) date, (2) time, (3) name, (4) ip, (5) agent, or (6) msg parameter.
network
cj-design
4.3