Orca@2.0.2 Security Vulnerabilities and Issues — Orca@2.0.2 CVE List

Lucene search

BoonexOrca2.0.2

2 matches found

CVE•added 2008/11/19 6:11 p.m.•35 views

CVE-2008-5167

PHP remote file inclusion vulnerability in layout/default/params.php in Boonex Orca 2.0 and 2.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the gConf[dir][layouts] parameter.

9.3CVSS7.6AI score0.01518EPSS

CVE•added 2009/08/21 11:30 a.m.•28 views

CVE-2009-2919

Cross-site scripting (XSS) vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the topic title field.

3.5CVSS5.5AI score0.00179EPSS