Vulnerabilities > Garagesalesjunkie

DATE CVE VULNERABILITY TITLE RISK
2009-08-14 CVE-2009-2778 Cross-Site Scripting vulnerability in Garagesalesjunkie Garagesales Script
Cross-site scripting (XSS) vulnerability in visitor/view.php in GarageSales Script allows remote attackers to inject arbitrary web script or HTML via the key parameter.
4.3
2009-08-14 CVE-2009-2777 SQL Injection vulnerability in Garagesalesjunkie Garagesales Script
SQL injection vulnerability in visitor/view.php in GarageSales Script allows remote attackers to execute arbitrary SQL commands via the key parameter.
network
low complexity
garagesalesjunkie CWE-89
7.5