Vulnerabilities > Lanifex
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-11-29 | CVE-2009-4082 | Code Injection vulnerability in Lanifex Outreach Project Tool PHP remote file inclusion vulnerability in forums/Forum_Include/index.php in Outreach Project Tool (OPT) 1.2.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_path parameter. | 7.5 |
2006-09-07 | CVE-2006-4604 | Remote File Include vulnerability in Lanifex 2.2 PHP remote file inclusion vulnerability in LFXlib/access_manager.php in Lanifex Database of Managed Objects (DMO) 2.3 Beta and earlier allows remote attackers to execute arbitrary PHP code via the _incMgr parameter. | 7.5 |
2003-12-31 | CVE-2003-1353 | Cross-Site Scripting vulnerability in Lanifex Outreach Project Tool 0.946B Multiple cross-site scripting (XSS) vulnerabilities in Outreach Project Tool (OPT) 0.946b allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the news field. | 4.3 |