Vulnerabilities > Scriptsez

DATE CVE VULNERABILITY TITLE RISK
2007-01-26 CVE-2007-0517 Information Disclosure vulnerability in Scriptsez Random PHP Quote 1.0
Scriptsez Random PHP Quote 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password information via a direct request for pwd.txt.
network
low complexity
scriptsez
7.5
2006-06-13 CVE-2006-3004 Cross-Site Scripting vulnerability in ScriptsEZ Ez Ringtone Manager
Multiple cross-site scripting (XSS) vulnerabilities in Ez Ringtone Manager allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter in player.php and (2) keyword parameter when performing a search.
network
scriptsez
4.3
2006-05-05 CVE-2006-2232 HTML Injection vulnerability in Scriptsez Cute Guestbook 20060211
Cross-site scripting (XSS) vulnerability in Scriptsez Cute Guestbook 20060211 allows remote attackers to inject arbitrary web script or HTML via the Comments field when signing the guestbook.
network
scriptsez
4.3