VYPR

Petition

by Webbdomain

CVEs (2)

  • CVE-2008-6624Apr 6, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in getin.php in WEBBDOMAIN Petition 1.02, 2.0, and 3.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.

  • CVE-2015-4377Jun 15, 2015
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Petition module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with the "create petition" permission to inject arbitrary web script or HTML via unknown vectors.