Vulnerabilities > Musicbox > Musicbox > 2.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-07-27 | CVE-2006-3886 | SQL Injection vulnerability in MusicBox Page Parameter SQL injection vulnerability in Shalwan MusicBox 2.3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter in a viewgallery action in a request for the top-level URI. | 7.5 |
2005-12-22 | CVE-2005-4500 | SQL Injection vulnerability in Musicbox 2.3 SQL injection vulnerability in MusicBox 2.3 allows remote attackers to execute arbitrary SQL commands via the (1) show and (2) type parameter. | 7.5 |