4.95.11

DATE	CVE	VULNERABILITY TITLE	RISK
2007-12-28	CVE-2007-6566	SQL Injection vulnerability in Xzero Scripts Xzero Community Classifieds 4.95.11 SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php. network low complexity xzero-scripts CWE-89	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.