Shodan
Vulnerabilities
Vulnerable Software
Virtual Design Studios:  Security Vulnerabilities
CVE-2008-2072
Cross-site scripting (XSS) vulnerability in index.php in Virtual Design Studio vlbook 1.21 allows remote attackers to inject arbitrary web script or HTML via the l parameter, a different vector than CVE-2006-3260.
CVSS Score
4.3
EPSS Score
0.066
Published
2008-05-05
CVE-2008-2073
Directory traversal vulnerability in include/global.inc.php in Virtual Design Studio vlbook 1.21 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the l parameter.
CVSS Score
7.5
EPSS Score
0.074
Published
2008-05-05
CVE-2006-3260
Cross-site scripting (XSS) vulnerability in index.php in vlbook 1.02 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
CVSS Score
4.3
EPSS Score
0.007
Published
2006-06-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved