Vulnerabilities > Jasmine Technologies > Lettergrade
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-09-18 | CVE-2007-4946 | Information Disclosure vulnerability in Lettergrade LetterGrade allows remote attackers to obtain sensitive information (installation path or account existence) via unspecified vectors. | 5.0 |
| 2007-09-18 | CVE-2007-4945 | Cross-Site Scripting vulnerability in Jasmine Technologies Lettergrade Multiple cross-site scripting (XSS) vulnerabilities in LetterGrade allow remote attackers to inject arbitrary web script or HTML via (1) a student's email address, (2) the year parameter to genbrws/Student/cal_month.php3, and other unspecified vectors related to the calendar. | 4.3 |