Vulnerabilities > Kozos

DATE	CVE	VULNERABILITY TITLE	RISK
2015-05-01	CVE-2015-0914	Improper Access Control vulnerability in Kozos Easyctf EasyCTF before 1.4 does not validate the session ID, which allows remote attackers to obtain access via a crafted HTTP request. network low complexity kozos CWE-284	5.0
2015-05-01	CVE-2015-0913	Cross-site Scripting vulnerability in Kozos Easyctf Cross-site scripting (XSS) vulnerability in EasyCTF before 1.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. network kozos CWE-79	3.5
2015-05-01	CVE-2015-0912	Arbitrary File Creation vulnerability in EasyCTF EasyCTF before 1.4 allows remote authenticated users to write executable content to files via unspecified vectors. network low complexity kozos	6.5

Vulnerabilities > Kozos {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Kozos"}]}