Sawmill Security Vulnerabilities and Issues — Sawmill CVE List

Lucene search

SawmillSawmill

4 matches found

CVE•added 2005/06/09 4:0 a.m.•41 views

CVE-2005-1901

Multiple cross-site scripting (XSS) vulnerabilities in Sawmill before 7.1.6 allow remote attackers to inject arbitrary web script or HTML via (1) the username in the Add User window or (2) the license key in the Licensing page.

4.3CVSS5.8AI score0.00527EPSS

CVE•added 2005/09/16 10:3 p.m.•40 views

CVE-2005-2950

Cross-site scripting (XSS) vulnerability in Sawmill 7.0.0 through 7.1.13 allows remote attackers to inject arbitrary web script or HTML via the query string in an HTTP GET request.

4.3CVSS5.7AI score0.00622EPSS

CVE•added 2002/06/25 4:0 a.m.•36 views

CVE-2002-0265

Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file.

4.6CVSS7AI score0.00206EPSS

CVE•added 2010/03/23 7:30 p.m.•33 views

CVE-2010-1079

Cross-site scripting (XSS) vulnerability in Sawmill before 7.2.18 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00296EPSS