Vulnerabilities > CCE Interact
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-11-03 | CVE-2008-3868 | Cross-Site Request Forgery (CSRF) vulnerability in Cce-Interact Interact 2.4.1 Cross-site request forgery (CSRF) vulnerability in Interact 2.4.1 allows remote attackers to hijack the authentication of super administrators for requests that create super administrator accounts. | 6.8 |
2008-11-03 | CVE-2008-3867 | SQL Injection vulnerability in Cce-Interact Interact 2.4.1 SQL injection vulnerability in spaces/emailuser.php in Interact 2.4.1 allows remote attackers to execute arbitrary SQL commands via the email_user_key parameter. | 6.8 |
2008-07-30 | CVE-2008-3384 | Path Traversal vulnerability in Cce-Interact Interact 2.4.1 Multiple directory traversal vulnerabilities in help/help.php in Interact Learning Community Environment Interact 2.4.1 allow remote attackers to include and execute arbitrary local files via a .. | 7.5 |