Vulnerabilities > Xhawk NET

DATE CVE VULNERABILITY TITLE RISK
2006-03-19 CVE-2006-1265 SQL Injection vulnerability in Xhawk.Net Discussion 2.0Beta2
SQL injection vulnerability in discussion.class.php in xhawk.net discussion 2.0 beta2 allows remote attackers to execute arbitrary SQL commands via the view parameter.
network
low complexity
xhawk-net
7.5
2006-03-19 CVE-2006-1264 Unspecified vulnerability in Xhawk.Net Discussion 2.0Beta2
Cross-site scripting (XSS) vulnerability in xhawk.net discussion 2.0 beta2 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag.
network
xhawk-net
4.3