Vastal I-tech Buddy Zone — known CVE vulnerabilities
Every CVE whose affected-product data names Vastal I-tech Buddy Zone, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2007-3526 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Buddy Zone 1.5 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the…
CVE-2007-3549 — CVSS 7.5 (high): SQL injection vulnerability in view_sub_cat.php in Buddy Zone 1.5 allows remote attackers to execute arbitrary SQL commands via the cat_id…
CVE-2006-3494 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Buddy Zone 1.0.1 allow remote attackers to inject arbitrary HTML and web script via…