Hypersilence Silentum Loginsys vulnerabilities
2 known vulnerabilities affecting hypersilence/silentum_loginsys.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-6763P3HIGHCVSS 7.5PoCv1.0.02009-04-28
CVE-2008-6763 [HIGH] CWE-287 CVE-2008-6763: login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain ac
login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.
nvd
CVE-2008-6764P4MEDIUMCVSS 4.3PoCv1.0.02009-04-28
CVE-2008-6764 [MEDIUM] CWE-79 CVE-2008-6764: Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attac
Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
nvd