Vulnerabilities > Traindepot
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-06-24 | CVE-2008-2839 | Cross-Site Scripting vulnerability in Traindepot 0.1 Cross-site scripting (XSS) vulnerability in the search module in Traindepot 0.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter to index.php. | 4.3 |
2008-06-24 | CVE-2008-2838 | Path Traversal vulnerability in Traindepot 0.1 Directory traversal vulnerability in index.php in Traindepot 0.1 allows remote attackers to read arbitrary files via a .. | 5.0 |