Cross-site scripting (XSS) vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote attackers to inject arbitrary web script or HTML via the mag_id parameter.
Max CVSS
4.3
EPSS Score
0.25%
Published
2009-09-30
Updated
2009-10-01
SQL injection vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the mag_id parameter, a different vector than CVE-2008-4465.
Max CVSS
7.5
EPSS Score
0.19%
Published
2009-09-30
Updated
2009-10-01
2 vulnerabilities found