Sfiab Science Fair In A Box — known CVE vulnerabilities
Every CVE whose affected-product data names Sfiab Science Fair In A Box, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2010-5026 — CVSS 6.8 (medium): SQL injection vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows remote attackers to execute arbitrary…
CVE-2010-5027 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows remote attackers to inject…