Vulnerabilities > David Degner

DATE	CVE	VULNERABILITY TITLE	RISK
2009-06-25	CVE-2009-2219	Cross-Site Scripting vulnerability in David Degner PHPcollegeexchange 0.1.5C Multiple cross-site scripting (XSS) vulnerabilities in phpCollegeExchange 0.1.5c allow remote attackers to inject arbitrary web script or HTML via the (1) _SESSION[handle] parameter to (a) home.php, (b) books/allbooks.php, or (c) books/home.php; or the (2) home parameter to (d) i_head.php or (e) i_nav.php, or (f) allbooks.php, (g) home.php, or (h) i_nav.php in books/. network david-degner CWE-79	4.3
2009-06-25	CVE-2009-2218	Code Injection vulnerability in David Degner PHPcollegeexchange 0.1.5C Multiple PHP remote file inclusion vulnerabilities in phpCollegeExchange 0.1.5c, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the home parameter to (1) i_head.php, (2) i_nav.php, (3) user_new_2.php, or (4) house/myrents.php; or (5) allbooks.php, (6) home.php, or (7) mybooks.php in books/. network david-degner CWE-94	6.8
2009-06-17	CVE-2009-2096	SQL Injection vulnerability in David Degner PHPcollegeexchange 0.1.5C SQL injection vulnerability in house/listing_view.php in phpCollegeExchange 0.1.5c allows remote attackers to execute arbitrary SQL commands via the itemnr parameter. network low complexity david-degner CWE-89	7.5

Vulnerabilities > David Degner {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"David Degner"}]}