VYPR

Gedcom Viewer

by Poplar Gedcom Viewer

CVEs (2)

  • CVE-2008-1787Apr 15, 2008
    risk 0.03cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in index.php in Poplar Gedcom Viewer 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) text and (2) ul parameters. NOTE: the provenance of this information is unknown; the details are obtained…

  • CVE-2007-0307Jan 18, 2007
    risk 0.03cvss epss 0.03

    PHP remote file inclusion vulnerability in include/common.php in Poplar Gedcom Viewer 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the env[rootPath] parameter.