VYPR
Vendor

RavenNuke

Products
2
CVEs
2
Across products
3
Status
Private

Products

2

Recent CVEs

2
  • CVE-2009-0678Feb 22, 2009
    risk 0.03cvss epss 0.03

    images/captcha.php in RavenNuke 2.30 allows remote attackers to obtain sensitive information via an aFonts array parameter value that does not correspond to a valid font file, which reveals the installation path in an error message.

  • CVE-2009-0679Feb 22, 2009
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the Your Account module in RavenNuke 2.30 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.