Test ID:	1.3.6.1.4.1.25623.1.0.902088
Category:	Web application abuses
Title:	Event Horizon < 1.1.11 Multiple Vulnerabilities
Summary:	Event Horizon is prone to multiple vulnerabilities.
Description:	Summary: Event Horizon is prone to multiple vulnerabilities. Vulnerability Insight: The flaw exists due to the improper validation of user supplied data to 'YourEmail' and 'VerificationNumber' parameters to 'modfile.php' script. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary HTML and script code and manipulate SQL queries by injecting arbitrary SQL code in a user's browser session in context of an affected site. Affected Software/OS: Event Horizon version 1.1.10 and prior. Solution: Update to version 1.1.11 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2854 http://secunia.com/advisories/40517 Common Vulnerability Exposure (CVE) ID: CVE-2010-2855 BugTraq ID: 41580 http://www.securityfocus.com/bid/41580
Copyright	Copyright (C) 2010 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.