Vulnerabilities > Easy Address Book WEB Server Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-04 | CVE-2023-4491 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Easy Address Book web Server Project Easy Address Book web Server 1.6 Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. | 9.8 |
| 2023-10-04 | CVE-2023-4492 | Cross-site Scripting vulnerability in Easy Address Book web Server Project Easy Address Book web Server 1.6 Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters (firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip) of the /addrbook.ghp file, allowing an attacker to inject a JavaScript payload specially designed to run when the application is loaded | 6.1 |
| 2023-10-04 | CVE-2023-4493 | Cross-site Scripting vulnerability in Easy Address Book web Server Project Easy Address Book web Server 1.6 Stored Cross-Site Scripting in Easy Address Book Web Server 1.6 version, through the users_admin.ghp file that affects multiple parameters such as (firstname, homephone, lastname, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate, workzip). | 5.4 |