Vulnerabilities > Scriptphp > Picengine > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2008-05-16	CVE-2008-2280	Cross-Site Scripting vulnerability in Scriptphp Picengine 1.0 Cross-site scripting (XSS) vulnerability in admin/index.php in Script PHP PicEngine 1.0 allows remote attackers to inject arbitrary web script or HTML via the l parameter. network scriptphp CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.