Zomp : Security Vulnerabilities, CVEs, CVSS score >= 1
Zomplog 3.8.2 and earlier allows remote attackers to gain administrative access by creating an admin account via a direct request to install/newuser.php with the admin parameter set to 1.
Max CVSS
7.5
EPSS Score
2.05%
Published
2008-05-20
Updated
2017-09-29
Cross-site scripting (XSS) vulnerability in admin/category.php in Zomplog 3.8.2 allows remote attackers to inject arbitrary web script or HTML via the catname parameter.
Max CVSS
4.3
EPSS Score
0.25%
Published
2008-05-13
Updated
2018-10-11
2 vulnerabilities found