Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2010-4978
Disclosure Date: November 01, 2011 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in image/view.php in CANDID allows remote attackers to inject arbitrary web script or HTML via the image_id parameter.
0
Attacker Value
Unknown
CVE-2010-4979
Disclosure Date: November 01, 2011 (last updated October 04, 2023)
SQL injection vulnerability in image/view.php in CANDID allows remote attackers to execute arbitrary SQL commands via the image_id parameter.
0
