Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2013-3637

Disclosure Date: February 07, 2020 (last updated February 21, 2025)
ProjectPier 0.8.8 does not use the Secure flag for cookies
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2013-3635

Disclosure Date: February 07, 2020 (last updated February 21, 2025)
ProjectPier 0.8.8 has stored XSS
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2013-3636

Disclosure Date: February 07, 2020 (last updated February 21, 2025)
ProjectPier 0.8.8 has a Remote Information Disclosure Weakness because of the lack of the HttpOnly cookie flag
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2015-2796

Disclosure Date: February 02, 2018 (last updated November 26, 2024)
Multiple cross-site scripting (XSS) vulnerabilities in Project-Pier ProjectPier-Core allow remote attackers to inject arbitrary web script or HTML via the search_for parameter to (1) search_by_tag.php, (2) search_contacts.php, or (3) search.php.
0
0