2 matches found
CVE-2008-2209
CVE-2008-2209 involves multiple cross-site scripting (XSS) flaws in Maian Greeting 2.1, specifically in admin/inc/header.php. The vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the msg_script and msg_script2 parameters. CVSS metrics in the provided data indicate...
CVE-2008-2208
The data sources confirm a SQL injection vulnerability in Maian Greeting 2.1, specifically in index.php where the keywords parameter used in a search action can be exploited to execute arbitrary SQL commands remotely. Impact stated: attackers may retrieve or modify data due to this injection. The...