Vulnerabilities > Netartmedia > Iboutique

DATE CVE VULNERABILITY TITLE RISK
2011-11-02 CVE-2010-5020 SQL Injection vulnerability in Netartmedia Iboutique 4.0
SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.
network
low complexity
netartmedia CWE-89
7.5
2010-03-02 CVE-2010-0804 Cross-Site Scripting vulnerability in Netartmedia Iboutique 4.0
Cross-site scripting (XSS) vulnerability in index.php in iBoutique 4.0 allows remote attackers to inject arbitrary web script or HTML via the key parameter in a products action.
4.3