Vulnerabilities > Harold Bakker > HB NS > 1.1.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-02 | CVE-2006-2146 | Input Validation vulnerability in Harold Bakker Hb-Ns 1.1.6 Multiple cross-site scripting (XSS) vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) poster_name, (2) poster_email, (3) poster_homepage, or (4) message parameter. network harold-bakker | 5.8 |
| 2006-05-02 | CVE-2006-2145 | Input Validation vulnerability in Harold Bakker Hb-Ns 1.1.6 Multiple SQL injection vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) topic or (2) id parameter. | 6.4 |