Schoolalumni Portal » Schoolalumni Portal : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in smumdadotcom_ascyb_alumni/mod.php in SchoolAlumni Portal 2.26 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search operation in the katalog module. NOTE: some of these details are obtained from third party information.
Max CVSS
5.1
EPSS Score
0.28%
Published
2006-10-26
Updated
2008-09-05
Directory traversal vulnerability in mod.php in SchoolAlumni Portal 2.26 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter. NOTE: some of these details are obtained from third party information.
Max CVSS
5.0
EPSS Score
0.74%
Published
2006-10-26
Updated
2008-09-05
2 vulnerabilities found