Vulnerabilities > Jnmsolutions
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-13 | CVE-2009-2440 | Cross-Site Scripting vulnerability in Jnmsolutions Guestbook 3.0 Cross-site scripting (XSS) vulnerability in index.php in JNM Guestbook 3.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter. | 4.3 |
2009-06-18 | CVE-2009-2111 | Code Injection vulnerability in Jnmsolutions DB TOP Sites 1.0 Static code injection vulnerability in add_reg.php in DB Top Sites 1.0 allows remote attackers to inject arbitrary PHP code via a crafted (1) url and (2) location parameter. | 10.0 |
2009-06-18 | CVE-2009-2110 | Path Traversal vulnerability in Jnmsolutions DB TOP Sites 1.0 Multiple directory traversal vulnerabilities in DB Top Sites 1.0, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. | 7.6 |