Shodan
Vulnerabilities
Vulnerable Software
Gforge:  >> Gforge  >> 4.7  Security Vulnerabilities
CVE-2009-3304
GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink attack on authorized_keys files in users' home directories, related to deb-specific/ssh_dump_update.pl and cronjobs/cvs-cron/ssh_create.php.
CVSS Score
3.3
EPSS Score
0.0
Published
2009-12-04
CVE-2009-3303
Cross-site scripting (XSS) vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote attackers to inject arbitrary web script or HTML via the helpname parameter.
CVSS Score
4.3
EPSS Score
0.003
Published
2009-11-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved