Lanifex: >> Outreach Project Tool Security Vulnerabilities
PHP remote file inclusion vulnerability in forums/Forum_Include/index.php in Outreach Project Tool (OPT) 1.2.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_path parameter.
CVSS Score
7.5
EPSS Score
0.032
Published
2009-11-29
Multiple cross-site scripting (XSS) vulnerabilities in Outreach Project Tool (OPT) 0.946b allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the news field.
CVSS Score
4.3
EPSS Score
0.003
Published
2003-12-31