2 matches found
CVE-2006-2886
KnowledgeTree Open Source
CVE-2012-0988
KnowledgeTree Community Edition vulnerable to multiple XSS in config/dmsDefaults.php (KnowledgeTree 3.7.0.2 and possibly earlier). The flaw allows remote attackers to inject arbitrary script/HTML via PATH_INFO parameters to login.php, admin.php, or preferences.php. Exploitation shown when AcceptP...