Vulnerabilities > W3Matter

DATE CVE VULNERABILITY TITLE RISK
2009-03-02 CVE-2008-6385 Cross-Site Scripting vulnerability in W3Matter Revsense 1.0
Cross-site scripting (XSS) vulnerability in index.php in W3matter RevSense 1.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter.
network
w3matter CWE-79
4.3
2009-02-27 CVE-2008-6310 SQL Injection vulnerability in W3Matter Revsense 1.0
SQL injection vulnerability in index.php in W3matter RevSense 1.0 allows remote attackers to execute arbitrary SQL commands via the f[password] parameter.
network
low complexity
w3matter CWE-89
7.5
2009-02-27 CVE-2008-6309 SQL Injection vulnerability in W3Matter Askpert
SQL injection vulnerability in index.php in W3matter AskPert allows remote attackers to execute arbitrary SQL commands via the f[password] parameter.
network
low complexity
w3matter CWE-89
7.5