Vulnerabilities > Vastal > Medium

DATE CVE VULNERABILITY TITLE RISK
2013-08-19 CVE-2013-5312 Cross-Site Scripting vulnerability in Vastal PHPvid 1.2.3
Multiple cross-site scripting (XSS) vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) n parameter to browse_videos.php or the (2) cat parameter to groups.php.
network
vastal CWE-79
4.3
4.3
2009-09-30 CVE-2009-3496 Cross-Site Scripting vulnerability in Vastal DVD Zone
Cross-site scripting (XSS) vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote attackers to inject arbitrary web script or HTML via the mag_id parameter.
network
vastal CWE-79
4.3
4.3
2008-05-19 CVE-2008-2335 Cross-Site Scripting vulnerability in Vastal PHPvid 1.1/1.2
Cross-site scripting (XSS) vulnerability in search_results.php in Vastal I-Tech phpVID 1.1 and 1.2 allows remote attackers to inject arbitrary web script or HTML via the query parameter.
network
vastal CWE-79
4.3
4.3