VYPR
Vendor

Pancake

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2020-24876Sep 3, 2020
    risk 0.00cvss epss 0.02

    Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation.

  • CVE-2008-2495May 28, 2008
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to have an unknown impact via a .. (dot dot) in the p parameter.

  • CVE-2008-2494May 28, 2008
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via the l parameter.

  • CVE-2007-0303Jan 18, 2007
    risk 0.00cvss epss 0.01

    Multiple unspecified vulnerabilities in Zina 1.0rc1 and earlier have unknown impact and attack vectors related to "Potential security bugs."