CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cce-Interact: Security Vulnerabilities

CVE-2008-3868

Cross-site request forgery (CSRF) vulnerability in Interact 2.4.1 allows remote attackers to hijack the authentication of super administrators for requests that create super administrator accounts.

CVSS Score

6.8

EPSS Score

0.002

Published

2008-11-03

CVE-2008-3867

SQL injection vulnerability in spaces/emailuser.php in Interact 2.4.1 allows remote attackers to execute arbitrary SQL commands via the email_user_key parameter.

CVSS Score

6.8

EPSS Score

0.007

Published

2008-11-03

CVE-2008-3384

Multiple directory traversal vulnerabilities in help/help.php in Interact Learning Community Environment Interact 2.4.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) module and (2) file parameters.

CVSS Score

7.5

EPSS Score

0.069

Published

2008-07-30

Page 1

Vulnerabilities

Vulnerable Software

Cce-Interact: Security Vulnerabilities

Products

Pricing

Contact Us