Datalife Engine@* Security Vulnerabilities and Issues — Datalife Engine@* CVE List

Lucene search

DlevietDatalife Engine*

2 matches found

CVE•added 2018/08/01 7:29 p.m.•58 views

CVE-2018-14777

An issue was discovered in DataLife Engine (DLE) through 13.0. An attacker can use XSS (related to the /addnews.html and /index.php?do=addnews URIs) to send a malicious script to unsuspecting Admins or users.

5.4CVSS5.2AI score0.00206EPSS

CVE•added 2014/06/02 3:55 p.m.•46 views

CVE-2013-7387

Session fixation vulnerability in DataLife Engine (DLE) 9.7 and earlier allows remote attackers to hijack web sessions via the PHPSESSID cookie.

6.8CVSS6.9AI score0.02198EPSS