Vulnerabilities > Maianscriptworld > Maian Music
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-05-14 | CVE-2008-2206 | Cross-Site Scripting vulnerability in Maianscriptworld Maian Music 1.1 Multiple cross-site scripting (XSS) vulnerabilities in Maian Music 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) keywords parameter in a search action to index.php, and the (2) msg_script parameter to admin/inc/footer.php. | 4.3 |
| 2008-05-14 | CVE-2008-2205 | SQL Injection vulnerability in Maianscriptworld Maian Music 1.1 SQL injection vulnerability in index.php in Maian Music 1.1 allows remote attackers to execute arbitrary SQL commands via the album parameter in an album action. | 7.5 |