PhxContacts 0.93 - contact_view.php?id_contact SQL Injection

PhxContacts 0.93 - contactview.php?idcontact SQL Injection source: https://www.securityfocus.com/bid/17306/info PhxContacts is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL...

CutePHP CuteNews 1.3 - HTML Injection

source: https://www.securityfocus.com/bid/8060/info CutePHP is prone to HTML injection attacks. The vulnerability exists due to insufficient sanitization of user-supplied input. Specifically, user-supplied input to news posts are not sufficiently sanitized of malicious HTML code...