Projectpier@0.8.8 Security Vulnerabilities and Issues — Projectpier@0.8.8 CVE List

Lucene search

ProjectpierProjectpier0.8.8

4 matches found

CVE•added 2020/02/07 3:15 p.m.•42 views

CVE-2013-3636

ProjectPier 0.8.8 has a Remote Information Disclosure Weakness because of the lack of the HttpOnly cookie flag

5.4CVSS5.4AI score0.00235EPSS

CVE•added 2020/02/07 3:15 p.m.•42 views

CVE-2013-3637

ProjectPier 0.8.8 does not use the Secure flag for cookies

5.4CVSS5.5AI score0.00181EPSS

CVE•added 2018/02/02 9:29 p.m.•38 views

CVE-2015-2796

Multiple cross-site scripting (XSS) vulnerabilities in Project-Pier ProjectPier-Core allow remote attackers to inject arbitrary web script or HTML via the search_for parameter to (1) search_by_tag.php, (2) search_contacts.php, or (3) search.php.

6.1CVSS6AI score0.00238EPSS

CVE•added 2020/02/07 3:15 p.m.•28 views

CVE-2013-3635

ProjectPier 0.8.8 has stored XSS

5.4CVSS5.2AI score0.00181EPSS