Tux Racer: >> Tuxbank Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Tux Racer TuxBank 0.7x and 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) description parameters.
CVSS Score
4.3
EPSS Score
0.004
Published
2005-12-31
SQL injection vulnerability in manage_account.php in Tux Racer TuxBank 0.7x and 0.8 allows remote attackers to execute arbitrary SQL commands via the id parameter in a manageaccount action to index.php.
CVSS Score
7.5
EPSS Score
0.006
Published
2005-12-31