Vulnerabilities > Haudenschilt > Battlenet Clan Script > 1.5.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-08-08 | CVE-2008-3556 | SQL Injection vulnerability in Haudenschilt Battlenet Clan Script 1.5.2 Multiple SQL injection vulnerabilities in index.php in Battle.net Clan Script 1.5.2 allow remote attackers to execute arbitrary SQL commands via the (1) showmember parameter in a members action and the (2) thread parameter in a board action. | 7.5 |
| 2008-06-03 | CVE-2008-2522 | SQL Injection vulnerability in Haudenschilt Battlenet Clan Script 1.5.1/1.5.2 SQL injection vulnerability in members.php in Battle.net Clan Script for PHP 1.5.3 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the showmember parameter in a members action. | 6.8 |