Vulnerabilities > Virtuenetz > Virtue News Manager

DATE CVE VULNERABILITY TITLE RISK
2009-06-09 CVE-2009-2020 Cross-Site Scripting vulnerability in Virtuenetz Virtue News Manager
Cross-site scripting (XSS) vulnerability in news_detail.php in Virtue News Manager allows remote attackers to inject arbitrary web script or HTML via the nid parameter.
network
virtuenetz CWE-79
4.3
4.3
2009-06-09 CVE-2009-2019 SQL Injection vulnerability in Virtuenetz Virtue News Manager
SQL injection vulnerability in news_detail.php in Virtue News Manager allows remote attackers to execute arbitrary SQL commands via the nid parameter.
network
low complexity
virtuenetz CWE-89
7.5
7.5