Vulnerabilities > Ilient > Sysaid
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-05-13 | CVE-2008-2179 | Cross-Site Scripting vulnerability in Ilient Sysaid 5.1.08 Cross-site scripting (XSS) vulnerability in SystemList.jsp in SysAid 5.1.08 allows remote attackers to inject arbitrary web script or HTML via the searchField parameter. | 4.3 |
2007-10-06 | CVE-2007-5259 | Cross-Site Request Forgery (CSRF) vulnerability in Ilient Sysaid 4.5.03/4.5.04 Cross-site request forgery (CSRF) vulnerability in Ilient SysAid 4.5.03 and 4.5.04 allows remote attackers to perform some actions as administrators, as demonstrated by changing the administrator password. | 4.3 |