Vulnerabilities > Ramoncastro
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-05-04 | CVE-2010-1711 | Cross-Site Scripting vulnerability in Ramoncastro Siestta 2.0 Cross-site scripting (XSS) vulnerability in carga_foto_al.php in Siestta 2.0, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the usuario parameter. | 4.3 |
2010-05-04 | CVE-2010-1710 | Path Traversal vulnerability in Ramoncastro Siestta 2.0 Directory traversal vulnerability in login.php in Siestta 2.0, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |