Vulnerabilities > Jeeblestechnology
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-03-17 | CVE-2008-1355 | Cross-Site Scripting vulnerability in Jeeblestechnology Jeebles Directory 2.9.60 Cross-site scripting (XSS) vulnerability in index.php in Jeebles Technology Jeebles Directory 2.9.60 allows remote attackers to inject arbitrary web script or HTML via the path parameter. | 4.3 |
2007-10-29 | CVE-2007-5706 | Path Traversal vulnerability in Jeeblestechnology Jeebles Directory 2.9.60 Absolute path traversal vulnerability in download.php in Jeebles Directory 2.9.60 allows remote attackers to read arbitrary files via a full pathname in the query string. | 9.3 |
2007-10-29 | CVE-2007-5705 | Code Injection vulnerability in Jeeblestechnology Jeebles Directory 2.9.60 Unspecified vulnerability in the Settings component in the administration system in Jeebles Directory 2.9.60 allows remote authenticated administrators to execute arbitrary PHP code via unspecified vectors related to settings.inc.php. | 6.0 |