Zenas Paolink vulnerabilities
2 known vulnerabilities affecting zenas/paolink.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2009-3423P3MEDIUMCVSS 6.8PoCv1.02009-09-25
CVE-2009-3423 [MEDIUM] CWE-287 CVE-2009-3423: login.php in Zenas PaoLink 1.0, when register_globals is enabled, allows remote attackers to bypass
login.php in Zenas PaoLink 1.0, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
nvd
CVE-2009-3320P4MEDIUMCVSS 4.3PoCv1.02009-09-23
CVE-2009-3320 [MEDIUM] CWE-79 CVE-2009-3320: Cross-site scripting (XSS) vulnerability in scrivi.php in Zenas PaoLink (aka Pao-Link) 1.0 allows re
Cross-site scripting (XSS) vulnerability in scrivi.php in Zenas PaoLink (aka Pao-Link) 1.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
nvd