Yogurt@0.3 Security Vulnerabilities and Issues — Yogurt@0.3 CVE List

Lucene search

Ricardo Alexandre De Oliveira StaudtYogurt0.3

2 matches found

CVE•added 2009/06/12 6:0 p.m.•38 views

CVE-2009-2034

SQL injection vulnerability in writemessage.php in Yogurt 0.3, when register_globals is enabled, allows remote authenticated users to execute arbitrary SQL commands via the original parameter.

6CVSS8.2AI score0.00271EPSS

CVE•added 2009/06/12 6:0 p.m.•30 views

CVE-2009-2033

Cross-site scripting (XSS) vulnerability in index.php in Yogurt 0.3 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

4.3CVSS5.9AI score0.01017EPSS