Hypersilence: >> Silentum Loginsys Security Vulnerabilities
login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.
CVSS Score
7.5
EPSS Score
0.029
Published
2009-04-28
Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
CVSS Score
4.3
EPSS Score
0.003
Published
2009-04-28