CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Hypersilence: >> Silentum Loginsys >> 1.0.0 Security Vulnerabilities

CVE-2008-6763

login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.

CVSS Score

7.5

EPSS Score

0.017

Published

2009-04-28

CVE-2008-6764

Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

CVSS Score

4.3

EPSS Score

0.003

Published

2009-04-28

Page 1

Vulnerabilities

Vulnerable Software

Hypersilence: >> Silentum Loginsys >> 1.0.0 Security Vulnerabilities

Products

Pricing

Contact Us