Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Scribe Security Vulnerabilities

cve
cve

CVE-2021-43935

The impacted products, when configured to use SSO, are affected by an improper authentication vulnerability. This vulnerability allows the application to accept manual entry of any active directory (AD) account provisioned in the application without supplying a password, resulting in access to the....

9.8CVSS

9.3AI Score

0.002EPSS

2021-12-15 07:15 PM
37
cve
cve

CVE-2008-0822

Directory traversal vulnerability in index.php in Scribe 0.2 allows remote attackers to read arbitrary local files via a .. (dot dot) in the page...

7.3AI Score

0.009EPSS

2008-02-19 08:44 PM
17
cve
cve

CVE-2007-5823

Directory traversal vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the username parameter in a Register...

7.6AI Score

0.007EPSS

2007-11-05 07:46 PM
17
cve
cve

CVE-2007-5822

Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action, possibly related to the register function in...

8.2AI Score

0.024EPSS

2007-11-05 07:46 PM
13