Fuzzymonkey: Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in BBcode.pm in M. Blom HTML::BBCode 1.04 and earlier, as used in products such as My Blog before 1.65, allows remote attackers to inject arbitrary Javascript via a javascript URI in an (1) img or (2) url BBcode tag.
CVSS Score
4.3
EPSS Score
0.121
Published
2006-02-16
SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute arbitrary SQL commands via the email parameter.
CVSS Score
6.8
EPSS Score
0.003
Published
2003-12-31