Vulnerabilities > Vbzoom > Vbzoom

DATE CVE VULNERABILITY TITLE RISK
2006-03-10 CVE-2006-1132 SQL Injection vulnerability in Vbzoom 1.11
SQL injection vulnerability in show.php in vbzoom 1.11 allow remote attackers to execute arbitrary SQL commands via the MainID parameter.
network
low complexity
vbzoom
7.5
7.5
2005-12-31 CVE-2005-4729 SQL Injection vulnerability in Vbzoom 1.11
SQL injection vulnerability in show.php in VBZooM Forum allows remote attackers to execute arbitrary SQL commands via the SubjectID parameter.
network
low complexity
vbzoom
7.5
7.5
2005-08-03 CVE-2005-2441 Cross-Site Scripting vulnerability in VBZooM Forum
Multiple cross-site scripting (XSS) vulnerabilities in VBzoom allow remote attackers to inject arbitrary web script and HTML via the (1) UserName parameter to profile.php or (2) UserID parameter to login.php.
network
vbzoom
4.3
4.3