Lucene search
Traindepot Security Vulnerabilities
cve
Directory traversal vulnerability in index.php in Traindepot 0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter.
6.7AI Score
0.003EPSS
2008-06-24 07:41 PM
24
cve
Cross-site scripting (XSS) vulnerability in the search module in Traindepot 0.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter to index.php.
5.7AI Score
0.002EPSS
2008-06-24 07:41 PM
20