Vulnerabilities > Endonesia > Endonesia

DATE CVE VULNERABILITY TITLE RISK
2003-12-31 CVE-2003-1317 Cross-Site Scripting vulnerability in eNdonesia Mod Parameter
Cross-site scripting (XSS) vulnerability in mod.php in eNdonesia 8.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter.
network
endonesia
6.8
6.8
2003-12-31 CVE-2003-1316 Path Disclosure vulnerability in eNdonesia Mod Parameter
mod.php in eNdonesia 8.2 allows remote attackers to obtain sensitive information via a ' (quote) value in the lng parameter, which reveals the path in an error message.
network
low complexity
endonesia
5.0
5.0