Phprojekt: >> Phprojekt >> 4.2 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in PHProjekt 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatroom text submission form.
CVSS Score
5.1
EPSS Score
0.01
Published
2005-04-20
PHP remote file inclusion vulnerability in authform.inc.php in PHProjekt 4.2.3 and earlier allows remote attackers to include arbitrary PHP code via a URL in the path_pre parameter.
CVSS Score
4.3
EPSS Score
0.005
Published
2004-12-31