CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Etomite: >> Etomite >> 0.6.1.4 Security Vulnerabilities

CVE-2011-4264

Cross-site scripting (XSS) vulnerability in Etomite before 1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.002

Published

2011-12-08

CVE-2008-0820

Cross-site scripting (XSS) vulnerability in index.php in Etomite 0.6.1.4 Final allows remote attackers to inject arbitrary web script or HTML via $_SERVER['PHP_INFO']. NOTE: the vendor disputes this issue in a followup, stating that the affected variable is $_SERVER['PHP_SELF'], and "This is not an Etomite specific exploit and I would like the report rescinded.

CVSS Score

4.3

EPSS Score

0.005

Published

2008-02-19

Page 1

Vulnerabilities

Vulnerable Software

Etomite: >> Etomite >> 0.6.1.4 Security Vulnerabilities

Products

Pricing

Contact Us