Vulnerabilities > Vbzoom > Vbzoom > 1.01
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-06-27 | CVE-2006-3239 | SQL Injection vulnerability in Vbzoom 1.00/1.01/1.11 SQL injection vulnerability in message.php in VBZooM 1.11 and earlier allows remote attackers to execute arbitrary SQL commands via the UserID parameter. | 7.5 |
| 2006-06-16 | CVE-2006-3056 | SQL Injection vulnerability in Vbzoom 1.01 SQL injection vulnerability in language.php in VBZooM 1.01 allows remote attackers to execute arbitrary SQL commands via the Action parameter. | 7.5 |