2 matches found
CVE-2009-3530
RadBids Gold 4 (RadScripts) is affected by a cross-site scripting (XSS) vulnerability in storefront.php via the mode parameter. The available sources (NVD, CVE listings) confirm the vulnerability but do not provide additional technical details such as affected versions beyond RadBids Gold 4, or c...
CVE-2009-3529
The CVE-2009-3529 entry concerns RadScripts RadBids Gold 4. Vulnerability : SQL injection in index.php triggered by the fid parameter in a view_forum action, enabling remote attackers to execute arbitrary SQL commands. This is a different vector than CVE-2005-1074. Impact : Partial confidentialit...