Vulnerabilities > Schoolwires

DATE CVE VULNERABILITY TITLE RISK
2008-02-22 CVE-2008-0909 Cross-Site Scripting vulnerability in Schoolwires Academic Portal
Cross-site scripting (XSS) vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to inject arbitrary web script or HTML via the c parameter.
4.3
2008-02-22 CVE-2008-0908 SQL Injection vulnerability in Schoolwires Academic Portal
SQL injection vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to execute arbitrary SQL commands via the c parameter.
network
low complexity
schoolwires CWE-89
7.5