Vulnerabilities > Rayzz
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-11-02 | CVE-2010-5005 | Cross-Site Scripting vulnerability in Rayzz Photoz Cross-site scripting (XSS) vulnerability in members/profileCommentsResponse.php in Rayzz Photoz allows remote attackers to inject arbitrary web script or HTML via the profileCommentTextArea parameter. | 4.3 |
2007-12-04 | CVE-2007-6230 | Path Traversal vulnerability in Rayzz Script 2.0 Directory traversal vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2007-12-04 | CVE-2007-6229 | Code Injection vulnerability in Rayzz Script 2.0 PHP remote file inclusion vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the CFG[site][project_path] parameter. | 7.5 |