Sfiab Science Fair In A Box vulnerabilities
2 known vulnerabilities affecting sfiab/science_fair_in_a_box.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2010-5026P3MEDIUMCVSS 6.8PoCv2.0.6v2.2.02011-11-02
CVE-2010-5026 [MEDIUM] CWE-89 CVE-2010-5026: SQL injection vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows r
SQL injection vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the type parameter. NOTE: some of these details are obtained from third party information.
nvd
CVE-2010-5027P4MEDIUMCVSS 4.3PoCv2.0.6v2.2.02011-11-02
CVE-2010-5027 [MEDIUM] CWE-79 CVE-2010-5027: Cross-site scripting (XSS) vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2
Cross-site scripting (XSS) vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows remote attackers to inject arbitrary web script or HTML via the type parameter. NOTE: some of these details are obtained from third party information.
nvd