Rincewind Project: Security Vulnerabilities
An issue was discovered in Rincewind 0.1. A reinstall vulnerability exists because the parameter p of index.php and another file named commonPages.php allows an attacker to reinstall the product, with all data reset.
CVSS Score
7.5
EPSS Score
0.002
Published
2018-08-03
An issue was discovered in Rincewind 0.1. There is a cross-site scripting (XSS) vulnerability involving a p=account request to index.php and another file named commonPages.php.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-08-03