Vulnerabilities > Scripts4You > Clean CMS > 1.5

DATE CVE VULNERABILITY TITLE RISK
2008-12-01 CVE-2008-5290 Cross-Site Scripting vulnerability in Scripts4You Clean CMS 1.5
Cross-site scripting (XSS) vulnerability in full_txt.php in Werner Hilversum Clean CMS 1.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter. 		4.3
4.3
2008-12-01 CVE-2008-5289 SQL Injection vulnerability in Scripts4You Clean CMS 1.5
SQL injection vulnerability in full_txt.php in Werner Hilversum Clean CMS 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
scripts4you CWE-89
7.5
7.5