Opendocman Security Vulnerabilities and Issues — Opendocman CVE List

Lucene search

OpendocmanOpendocman

3 matches found

CVE•added 2009/10/26 5:30 p.m.•36 views

CVE-2009-3789

Multiple cross-site scripting (XSS) vulnerabilities in OpenDocMan 1.2.5 allow remote attackers to inject arbitrary web script or HTML via the last_message parameter to (1) add.php, (2) toBePublished.php, (3) index.php, and (4) admin.php; the PATH_INFO to the default URI to (5) category.php, (6) dep...

4.3CVSS5.8AI score0.03544EPSS

CVE•added 2009/10/27 4:30 p.m.•34 views

CVE-2009-3801

SQL injection vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to execute arbitrary SQL commands via the frmpass (aka Password) parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

7.5CVSS8AI score0.00366EPSS

CVE•added 2009/10/26 5:30 p.m.•31 views

CVE-2009-3788

SQL injection vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to execute arbitrary SQL commands via the frmuser (aka Username) parameter.

7.5CVSS8.3AI score0.00481EPSS