VYPR

Bizdirectory

by Idevspot

CVEs (2)

  • CVE-2008-3941Sep 5, 2008
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in BizDirectory 2.04 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter in a search action to the default URI.

  • CVE-2006-4883Sep 19, 2006
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot BizDirectory allow remote attackers to inject arbitrary web script or HTML via (1) the stylesheet parameter in Feed.php or (2) the message parameter in status.php.