RSS   Podatności dla 'Silentum loginsys'   RSS

2009-04-28
 
CVE-2008-6764

 
 
Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

 
 
CVE-2008-6763

 
 
login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.

 

 >>> Vendor: Hypersilence 2 Produkty
Silentum loginsys
Silentum guestbook

Copyright 2024, cxsecurity.com

 

Back to Top