Banana Dance Security Vulnerabilities and Issues — Banana Dance CVE List

Lucene search

BananadanceBanana Dance

3 matches found

CVE•added 2012/09/15 5:55 p.m.•44 views

CVE-2011-5176

Multiple cross-site scripting (XSS) vulnerabilities in search.php in Banana Dance, possibly B.1.5 and earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) q or (2) category parameter.

4.3CVSS6AI score0.00225EPSS

CVE•added 2012/09/15 5:55 p.m.•40 views

CVE-2011-5168

SQL injection vulnerability in user.php in Banana Dance before B.1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.

7.5CVSS8.7AI score0.00275EPSS

CVE•added 2012/09/15 5:55 p.m.•27 views

CVE-2011-5175

SQL injection vulnerability in search.php in Banana Dance, possibly B.1.5 and earlier, allows remote attackers to execute arbitrary SQL commands via the category parameter.

7.5CVSS8.8AI score0.0042EPSS