Vulnerabilities > Xzeroscripts > Xzero Community Classifieds
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-21 | CVE-2009-2914 | Cross-Site Scripting vulnerability in Xzeroscripts Xzero Community Classifieds Cross-site scripting (XSS) vulnerability in index.php in XZero Community Classifieds 4.97.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded file. | 4.3 |
2009-08-21 | CVE-2009-2913 | Cross-Site Scripting vulnerability in Xzeroscripts Xzero Community Classifieds 4.97.8 Cross-site scripting (XSS) vulnerability in index.php in XZero Community Classifieds 4.97.8 allows remote attackers to inject arbitrary web script or HTML via the URI. | 4.3 |
2009-08-20 | CVE-2009-2893 | Cross-Site Scripting vulnerability in Xzeroscripts Xzero Community Classifieds 4.97.8 Multiple cross-site scripting (XSS) vulnerabilities in index.php in XZero Community Classifieds 4.97.8 allow remote attackers to inject arbitrary web script or HTML via (1) the postevent parameter in a post action or (2) the _xzcal_y parameter. | 4.3 |