Vulnerabilities > Vacation Rentals

DATE CVE VULNERABILITY TITLE RISK
2008-08-12 CVE-2008-3603 SQL Injection vulnerability in Vacation Rentals Vacation Rental Script 3.0
SQL injection vulnerability in index.php in Vacation Rental Script 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a sections action.
network
low complexity
vacation-rentals CWE-89
7.5
2006-05-30 CVE-2006-2651 Cross-Site Scripting vulnerability in Vacation Rentals Vacation Rental Script 1.0
Cross-site scripting (XSS) vulnerability in index.php in Vacation Rental Script 1.0 allows remote attackers to inject arbitrary web script or HTML via the obj parameter.
network
high complexity
vacation-rentals
2.6