Vulnerabilities > Dansie
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-01-16 | CVE-2008-0292 | Cross-Site Scripting vulnerability in Dansie Photo Album 1.0 Cross-site scripting (XSS) vulnerability in photo_album.pl in Dansie Photo Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter. | 4.3 |
2008-01-15 | CVE-2008-0257 | Cross-Site Scripting vulnerability in Dansie Search Engine 2.7 Cross-site scripting (XSS) vulnerability in search.pl in Dansie Search Engine 2.7 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter. | 4.3 |
2003-12-31 | CVE-2003-1517 | Information Exposure vulnerability in Dansie Shopping Cart cart.pl in Dansie shopping cart allows remote attackers to obtain the installation path via an invalid db parameter, which leaks the path in an error message. | 5.0 |
2000-12-31 | CVE-2000-1243 | Unspecified vulnerability in Dansie Shopping Cart 3.04 Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to an e-mail address controlled by the product developers. | 5.0 |