Directtopics

CVEs (3)

CVE	Vendor / Product	CVSS	Published	Description
CVE-2005-1569	Directtopics Directtopics	—	May 14, 2005	Cross-site scripting (XSS) vulnerability in DirectTopics 2.1 and 2.2 allows remote attackers to inject arbitrary web script via a javascript: URL in (1) a thread or (2) an IMG tag.
CVE-2005-1568	Directtopics Directtopics	—	May 12, 2005	topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to obtain sensitive information via an invalid topic parameter, which reveals the path in an error message.
CVE-2005-1567	Directtopics Directtopics	—	May 12, 2005	SQL injection vulnerability in topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to execute arbitrary SQL commands via the topic parameter.

CVE-2005-1569May 14, 2005
Directtopics
Directtopics
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in DirectTopics 2.1 and 2.2 allows remote attackers to inject arbitrary web script via a javascript: URL in (1) a thread or (2) an IMG tag.
CVE-2005-1568May 12, 2005
Directtopics
Directtopics
risk 0.00cvss —epss 0.00
topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to obtain sensitive information via an invalid topic parameter, which reveals the path in an error message.
CVE-2005-1567May 12, 2005
Directtopics
Directtopics
risk 0.00cvss —epss 0.00
SQL injection vulnerability in topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to execute arbitrary SQL commands via the topic parameter.