2 matches found
CVE-2010-2616
CVE-2010-2616 : PHP Bible Search (bible.php) is vulnerable to SQL injection via the chapter parameter, affecting the PHP Bible Search project (around version 0.99). The OpenVAS entry explicitly notes SQL injection (and also mentions cross-site scripting in its description). The root cause is unsa...
CVE-2010-2617
The CVE-2010-2617 entry concerns PHP Bible Search’s bible.php. The affected component is the bible.php script; the vulnerability is an XSS flaw exploitable via the chapter parameter, enabling remote script/HTML injection. OpenVAS adds a related SQL injection/XSS note for PHP Bible Search, but the...