Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2009-4687

Disclosure Date: March 10, 2010 (last updated October 04, 2023)
SQL injection vulnerability in silentum_guestbook.php in Silentum Guestbook 2.0.2 allows remote attackers to execute arbitrary SQL commands via the messageid parameter.
0
0
Attacker Value
Unknown

CVE-2008-6763

Disclosure Date: April 28, 2009 (last updated October 04, 2023)
login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.
0
0
Attacker Value
Unknown

CVE-2008-6764

Disclosure Date: April 28, 2009 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
0
0