CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Hypersilence: Security Vulnerabilities

CVE-2009-4687

SQL injection vulnerability in silentum_guestbook.php in Silentum Guestbook 2.0.2 allows remote attackers to execute arbitrary SQL commands via the messageid parameter.

CVSS Score

7.5

EPSS Score

0.001

Published

2010-03-10

CVE-2008-6763

login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.

CVSS Score

7.5

EPSS Score

0.017

Published

2009-04-28

CVE-2008-6764

Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

CVSS Score

4.3

EPSS Score

0.003

Published

2009-04-28

Page 1

Vulnerabilities

Vulnerable Software

Hypersilence: Security Vulnerabilities

Products

Pricing

Contact Us