Vulnerabilities > Vastal > DVD Zone
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-09-30 | CVE-2009-3496 | Cross-Site Scripting vulnerability in Vastal DVD Zone Cross-site scripting (XSS) vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote attackers to inject arbitrary web script or HTML via the mag_id parameter. | 4.3 |
| 2009-09-30 | CVE-2009-3495 | SQL Injection vulnerability in Vastal DVD Zone SQL injection vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the mag_id parameter, a different vector than CVE-2008-4465. | 7.5 |