Vulnerabilities > CDS Software Consortium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-04-02 | CVE-2008-1627 | Permissions, Privileges, and Access Controls vulnerability in CDS Software Consortium Invenio CDS Invenio 0.92.1 and earlier allows remote authenticated users to delete email notification alerts of arbitrary users via a modified internal UID. | 3.5 |
2006-10-18 | CVE-2006-5384 | Remote File Include vulnerability in CDSAgenda Sendalertemail.PHP PHP remote file inclusion vulnerability in modification/SendAlertEmail.php in CDS Software Consortium CDS Agenda 4.2.9 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AGE parameter. | 7.5 |