VYPR

jSite

by JSite

CVEs (4)

  • CVE-2025-3788LowApr 18, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in baseweb JSite 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /a/sys/user/save. The manipulation of the argument Name leads to cross site scripting. The attack can be launched remotely.…

  • CVE-2008-7301Oct 5, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in admin/login.php in jSite 1.0 OE allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

  • CVE-2008-3193Jul 16, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in jSite 1.0 OE allows remote attackers to execute arbitrary SQL commands via the page parameter to the default URI.

  • CVE-2008-3192Jul 16, 2008
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in index.php in jSite 1.0 OE allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter.