Vulnerabilities > Radscripts > Radlance > 7.5

DATE CVE VULNERABILITY TITLE RISK
2010-03-10 CVE-2009-4695 SQL Injection vulnerability in Radscripts Radlance 7.5
SQL injection vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a view_forum action.
network
low complexity
radscripts CWE-89
7.5
7.5
2010-03-10 CVE-2009-4694 Cross-Site Scripting vulnerability in Radscripts Radlance 7.5
Cross-site scripting (XSS) vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to inject arbitrary web script or HTML via the fid parameter in a view_forum action.
network
radscripts CWE-79
4.3
4.3
2010-03-10 CVE-2009-4692 Cross-Site Scripting vulnerability in Radscripts Radlance 7.5
Cross-site scripting (XSS) vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to inject arbitrary web script or HTML via the pr parameter in a ulist action.
network
radscripts CWE-79
4.3
4.3