Vulnerabilities > Phpscriptsnow > Riddles
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-08-20 | CVE-2009-2891 | SQL Injection vulnerability in PHPscriptsnow Riddles SQL injection vulnerability in list.php in PHP Scripts Now Riddles allows remote attackers to execute arbitrary SQL commands via the catid parameter. | 7.5 |
| 2009-08-20 | CVE-2009-2890 | Cross-Site Scripting vulnerability in PHPscriptsnow Riddles Cross-site scripting (XSS) vulnerability in results.php in PHP Scripts Now Riddles allows remote attackers to inject arbitrary web script or HTML via the searchquery parameter. | 4.3 |