Vulnerabilities > Openedit
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-23 | CVE-2008-6240 | Cross-Site Scripting vulnerability in Openedit Digital Asset Management Cross-site scripting (XSS) vulnerability in data/views/index.html in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to inject arbitrary web script or HTML via the catalogid parameter. | 4.3 |
2009-02-23 | CVE-2008-6239 | Cross-Site Request Forgery (CSRF) vulnerability in Openedit Digital Asset Management Cross-site request forgery (CSRF) vulnerability in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to perform unspecified actions as arbitrary users via unknown vectors. | 6.8 |
2009-02-23 | CVE-2008-6238 | Cross-Site Scripting vulnerability in Openedit Digital Asset Management Cross-site scripting (XSS) vulnerability in archive/savedqueries/savequeryfinish.html in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to inject arbitrary web script or HTML via the name parameter. | 4.3 |