Vulnerabilities > Joost Horward
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-05-22 | CVE-2009-1749 | Cross-Site Scripting vulnerability in Joost Horward Catviz 0.4.0 Multiple cross-site scripting (XSS) vulnerabilities in index.php in Catviz 0.4.0 beta 1 allow remote attackers to inject arbitrary web script or HTML via the (1) userman_form and (2) webpages_form parameters. | 4.3 |
2009-05-22 | CVE-2009-1748 | Path Traversal vulnerability in Joost Horward Catviz 0.4.0 Multiple directory traversal vulnerabilities in index.php in Catviz 0.4.0 Beta 1 allow remote attackers to read arbitrary files via a .. | 7.5 |