VYPR

Community Software

by Sijio

CVEs (3)

  • CVE-2010-2698Jul 12, 2010
    risk 0.03cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in Sijio Community Software allow remote authenticated users to inject arbitrary web script or HTML via the title parameter when (1) editing a new blog, (2) adding an album, or (3) editing an album. NOTE: the provenance of…

  • CVE-2010-2697Jul 12, 2010
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to edit_blog/index.php. NOTE: some of these details are obtained from third…

  • CVE-2010-2696Jul 12, 2010
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in gallery/index.php in Sijio Community Software allows remote attackers to execute arbitrary SQL commands via the parent parameter.