Vulnerabilities > Oscss > Oscss > 1.0

DATE CVE VULNERABILITY TITLE RISK
2011-12-08 CVE-2011-4713 Path Traversal vulnerability in Oscss
Directory traversal vulnerability in catalog/content.php in osCSS2 2.1.0 and earlier allows remote attackers to read arbitrary files via a ..
network
low complexity
oscss CWE-22
5.0
2010-07-25 CVE-2010-2856 Cross-Site Scripting vulnerability in Oscss
Cross-site scripting (XSS) vulnerability in admin/currencies.php in osCSS 1.2.2, and probably earlier versions, allows remote attackers to inject arbitrary web script or HTML via the page parameter.
network
oscss CWE-79
4.3