Vulnerabilities > Clansphere > Clansphere > 2008
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-07 | CVE-2009-2345 | SQL Injection vulnerability in Clansphere Multiple SQL injection vulnerabilities in ClanSphere before 2009.0.1 allow remote attackers to execute arbitrary SQL commands via unknown parameters to the gbook module and unspecified other components. | 7.5 |
2008-03-20 | CVE-2008-1399 | Cross-Site Scripting vulnerability in Clansphere 2008 Multiple cross-site scripting (XSS) vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |