Vulnerabilities > TUX Racer > Tuxbank > 0.8
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-31 | CVE-2005-4768 | SQL Injection vulnerability in TuxBank ManageAccount.PHP SQL injection vulnerability in manage_account.php in Tux Racer TuxBank 0.7x and 0.8 allows remote attackers to execute arbitrary SQL commands via the id parameter in a manageaccount action to index.php. | 7.5 |
2005-12-31 | CVE-2005-4732 | Cross-Site Scripting vulnerability in Tuxbank Multiple cross-site scripting (XSS) vulnerabilities in index.php in Tux Racer TuxBank 0.7x and 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) description parameters. network tux-racer | 4.3 |