Vulnerabilities > Wesley Destailleur
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-05-13 | CVE-2013-3538 | Cross-Site Scripting vulnerability in Wesley Destailleur Todoo Forum 2.0 Multiple cross-site scripting (XSS) vulnerabilities in todooforum.php in Todoo Forum 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id_post or (2) pg parameter. | 4.3 |
2013-05-13 | CVE-2013-3537 | SQL Injection vulnerability in Wesley Destailleur Todoo Forum 2.0 Multiple SQL injection vulnerabilities in todooforum.php in Todoo Forum 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) id_post or (2) pg parameter. | 7.5 |