SQL injection vulnerability in index.php in TaskFreak! 0.6.1 and earlier allows remote authenticated users to execute arbitrary SQL commands via the sContext parameter.
Max CVSS
6.0
EPSS Score
0.13%
Published
2008-01-15
Updated
2017-09-29
Cross-site scripting (XSS) vulnerability in TaskFreak! before 0.5.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a variant of CVE-2007-0982.
Max CVSS
4.3
EPSS Score
0.15%
Published
2007-03-02
Updated
2008-11-15
Cross-site scripting (XSS) vulnerability in error.php in TaskFreak! 0.5.5 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Max CVSS
4.3
EPSS Score
0.30%
Published
2007-02-16
Updated
2013-07-12
Multiple unspecified vulnerabilities in TaskFreak! before 0.1.4 have unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
0.19%
Published
2007-03-02
Updated
2008-09-05
4 vulnerabilities found