Vulnerabilities > Scriptsez
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-26 | CVE-2007-0517 | Information Disclosure vulnerability in Scriptsez Random PHP Quote 1.0 Scriptsez Random PHP Quote 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password information via a direct request for pwd.txt. | 7.5 |
2006-06-13 | CVE-2006-3004 | Cross-Site Scripting vulnerability in ScriptsEZ Ez Ringtone Manager Multiple cross-site scripting (XSS) vulnerabilities in Ez Ringtone Manager allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter in player.php and (2) keyword parameter when performing a search. network scriptsez | 4.3 |
2006-05-05 | CVE-2006-2232 | HTML Injection vulnerability in Scriptsez Cute Guestbook 20060211 Cross-site scripting (XSS) vulnerability in Scriptsez Cute Guestbook 20060211 allows remote attackers to inject arbitrary web script or HTML via the Comments field when signing the guestbook. network scriptsez | 4.3 |