Paul Smith Computer Services Vcap vulnerabilities
3 known vulnerabilities affecting paul_smith_computer_services/vcap.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2006-5034P4MEDIUMCVSS 5.0PoCv1.9.0_beta2006-09-27
CVE-2006-5034 [MEDIUM] CVE-2006-5034: Directory traversal vulnerability in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows
Directory traversal vulnerability in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
nvd
CVE-2006-5033P4MEDIUMCVSS 5.0PoC≤ 1.9.0_beta2006-09-27
CVE-2006-5033 [MEDIUM] CVE-2006-5033: Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 B
Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers or malformed URL encoding.
nvd
CVE-2006-5035P4MEDIUMCVSS 4.3v1.7.02006-09-27
CVE-2006-5035 [MEDIUM] CVE-2006-5035: Multiple cross-site scripting (XSS) vulnerabilities in Paul Smith Computer Services vCAP 1.7.0 allow
Multiple cross-site scripting (XSS) vulnerabilities in Paul Smith Computer Services vCAP 1.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the statusmsg parameter in RegisterPage.cgi or (2) a URI corresponding to a nonexistent file. NOTE: the provenance of this information is unknown; the details are obtained from third party informa
nvd