Vulnerabilities > Planetluc > Rateme > 1.3.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-11-04 | CVE-2008-4899 | Cross-Site Request Forgery (CSRF) vulnerability in Planetluc Rateme 1.3.3 Cross-site request forgery (CSRF) vulnerability in Planetluc RateMe 1.3.3 allows remote attackers to perform unauthorized actions as other users via unspecified vectors. | 6.8 |
2008-11-04 | CVE-2008-4898 | Cross-Site Scripting vulnerability in Planetluc Rateme 1.3.3 Cross-site scripting (XSS) vulnerability in planetluc RateMe 1.3.3 allows remote attackers to inject arbitrary web script or HTML via the rate parameter in a submit rate action. | 4.3 |