Vulnerabilities > Virtuenetz > Virtue Online Test Generator

DATE CVE VULNERABILITY TITLE RISK
2009-07-09 CVE-2009-2393 Permissions, Privileges, and Access Controls vulnerability in Virtuenetz Virtue Online Test Generator
admin/index.php in Virtuenetz Virtue Online Test Generator does not require administrative privileges, which allows remote authenticated users to have an unknown impact via unspecified vectors.
network
low complexity
virtuenetz CWE-264
6.5
6.5
2009-07-09 CVE-2009-2392 SQL Injection vulnerability in Virtuenetz Virtue Online Test Generator
SQL injection vulnerability in text.php in Virtuenetz Virtue Online Test Generator allows remote attackers to execute arbitrary SQL commands via the tid parameter.
network
low complexity
virtuenetz CWE-89
7.5
7.5
2009-07-09 CVE-2009-2391 Cross-Site Scripting vulnerability in Virtuenetz Virtue Online Test Generator
Cross-site scripting (XSS) vulnerability in text.php in Virtuenetz Virtue Online Test Generator allows remote attackers to inject arbitrary web script or HTML via the tid parameter.
network
virtuenetz CWE-79
4.3
4.3