Vulnerabilities > Phpsurveyor
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-04-27 | CVE-2006-2065 | SQL Injection vulnerability in PHPSurveyor SurveyID Parameter SQL injection vulnerability in save.php in PHPSurveyor 0.995 and earlier allows remote attackers to execute arbitrary SQL commands via the surveyid cookie. | 7.5 |
2005-12-30 | CVE-2005-4586 | SQL Injection vulnerability in PHPsurveyor 0.99 Multiple SQL injection vulnerabilities in PHPSurveyor before 0.991 allow remote attackers to execute arbitrary SQL commands via the (1) sql parameter in browse.php and the (2) sid, (3) lid, (4) gid, and (5) token parameters in certain PHP scripts. | 7.5 |