Actualscripts Actualanalyzer Lite vulnerabilities
2 known vulnerabilities affecting actualscripts/actualanalyzer_lite.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-2076P3HIGHCVSS 7.5PoCv2.782008-05-05
CVE-2008-2076 [HIGH] CWE-22 CVE-2008-2076: Directory traversal vulnerability in admin.php in ActualScripts ActualAnalyzer Lite 2.78 allows remo
Directory traversal vulnerability in admin.php in ActualScripts ActualAnalyzer Lite 2.78 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the style parameter.
nvd
CVE-2008-2527P4MEDIUMCVSS 4.3≤ 2.78v2.772008-06-03
CVE-2008-2527 [MEDIUM] CWE-79 CVE-2008-2527: Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and
Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and earlier, ActualAnalyzer Gold 7.74 and earlier, ActualAnalyzer Pro 6.95 and earlier, and ActualAnalyzer Lite 2.78 and earlier allows remote attackers to inject arbitrary web script or HTML via the language parameter.
nvd