RSS   Vulnerabilities for 'Rateme'   RSS

2008-11-03
 
CVE-2008-4899

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in Planetluc RateMe 1.3.3 allows remote attackers to perform unauthorized actions as other users via unspecified vectors.

 
 
CVE-2008-4898

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in planetluc RateMe 1.3.3 allows remote attackers to inject arbitrary web script or HTML via the rate parameter in a submit rate action.

 

 >>> Vendor: Planetluc 4 Products
Mynews
Rateme
Mygallery
Signme


Copyright 2024, cxsecurity.com

 

Back to Top