5 matches found
CVE-2008-1985
Cross-site scripting XSS vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php...
CVE-2008-1985
This CVE concerns DigitalHive 2.0 RC2 with a Cross-site scripting (XSS) vulnerability in base.php, exploitable via the mt parameter and possibly related to membres.php. The NVD assessment assigns a CVSS v2 base score 4.3 (Medium), with network attack vector, no authentication required, and partia...
CVE-2008-1985
Cross-site scripting XSS vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php...
CVE-2006-5493
PHP remote file inclusion vulnerability in template/purpletech/baseinclude.php in DigitalHive 2.0 RC2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter...
CVE-2006-5493
CVE-2006-5493 affects DigitalHive 2.0 RC2. The issue is a PHP remote file inclusion in template/purpletech/base_include.php that lets an attacker execute arbitrary PHP code by supplying a URL in the page parameter. Impact is user-controlled PHP execution with partial confidentiality/integrity/ava...