Vulnerabilities > Telephone

DATE	CVE	VULNERABILITY TITLE	RISK
2008-06-12	CVE-2008-2678	SQL Injection vulnerability in Telephone Directory 2008 Multiple SQL injection vulnerabilities in Telephone Directory 2008, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) code parameter in a confirm_data action to edit1.php and the (2) id parameter to view_more.php. network low complexity telephone CWE-89	7.5
2008-06-12	CVE-2008-2677	Cross-Site Scripting vulnerability in Telephone Directory 2008 Cross-site scripting (XSS) vulnerability in edit1.php in Telephone Directory 2008 allows remote attackers to inject arbitrary web script or HTML via the action parameter. network telephone CWE-79	4.3

Vulnerabilities > Telephone {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Telephone"}]}