RSS   Vulnerabilities for 'Silentum loginsys'   RSS

2009-04-28
 
CVE-2008-6764

 

 
Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

 
 
CVE-2008-6763

 

 
login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.

 

 >>> Vendor: Hypersilence 2 Products
Silentum loginsys
Silentum guestbook


Copyright 2024, cxsecurity.com

 

Back to Top