Vulnerabilities > Zoph > Zoph > 0.7.2.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-06-27 | CVE-2008-6838 | Cross-Site Scripting vulnerability in Zoph 0.7.2.1 Cross-site scripting (XSS) vulnerability in search.php in Zoph 0.7.2.1 allows remote attackers to inject arbitrary web script or HTML via the _off parameter. | 4.3 |
2009-06-27 | CVE-2008-6837 | SQL Injection vulnerability in Zoph 0.7.2.1 SQL injection vulnerability in Zoph 0.7.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different issue than CVE-2008-3258. | 7.5 |