Vulnerabilities > Particle Soft > Particle Wiki
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-06-12 | CVE-2006-2966 | Cross-Site Scripting vulnerability in Particle Soft Particle Wiki 1.0.2 Cross-site scripting (XSS) vulnerability in Particle Soft Particle Wiki 1.0.2 allows remote attackers to inject arbitrary web script or HTML via a BR element with an extraneous IMG tag and a STYLE attribute that contains "/**/" comment sequences, which bypasses the XSS protection scheme. network particle-soft | 4.3 |
2006-06-06 | CVE-2006-2861 | SQL Injection vulnerability in Particle Soft Particle Wiki 1.0.2 SQL injection vulnerability in index.php in Particle Wiki 1.0.2 and earlier allows remote attackers to execute arbitrary SQL commands via the version parameter. | 7.5 |