Vulnerabilities > Iscripts > Socialware > Medium

DATE CVE VULNERABILITY TITLE RISK
2008-04-15 CVE-2008-1790 Permissions, Privileges, and Access Controls vulnerability in Iscripts Socialware
Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality.
network
low complexity
iscripts CWE-264
6.5
6.5
2008-04-14 CVE-2008-1772 Cryptographic Issues vulnerability in Iscripts Socialware
iScripts SocialWare stores passwords in cleartext in a database, which allows context-dependent attackers to obtain sensitive information.
network
low complexity
iscripts CWE-310
5.0
5.0