VYPR

TeleSite

by Walla

CVEs (4)

  • CVE-2005-3578Nov 16, 2005
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in ts.exe (aka ts.cgi) in Walla TeleSite 3.0 and earlier allows remote attackers to inject arbitrary SQL commands via the sug parameter.

  • CVE-2005-3577Nov 16, 2005
    risk 0.03cvss epss 0.02

    Cross-site scripting vulnerability (XSS) in ts.exe (aka ts.cgi) in Walla TeleSite 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the sug parameter.

  • CVE-2005-3579Nov 16, 2005
    risk 0.03cvss epss 0.03

    ts.exe (aka ts.cgi) in Walla TeleSite 3.0 and earlier allows remote attackers to access arbitrary local files via the querystring.

  • CVE-2005-3576Nov 16, 2005
    risk 0.03cvss epss 0.03

    ts.exe in Walla TeleSite 3.0 and earlier allows remote attackers to access privileged information by entering the article number in tsurl parameter.