Sign in Subscribe

← All vendors

Vendor

Traindepot

Products

1

CVEs

2

Across products

2

Status

Private

Products

1

Traindepot
2 CVEs

Recent CVEs

2

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2008-2839		0.03	—	0.03		Jun 24, 2008	Cross-site scripting (XSS) vulnerability in the search module in Traindepot 0.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter to index.php.
CVE-2008-2838		0.03	—	0.04		Jun 24, 2008	Directory traversal vulnerability in index.php in Traindepot 0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter.

CVE-2008-2839Jun 24, 2008
risk 0.03cvss —epss 0.03
Cross-site scripting (XSS) vulnerability in the search module in Traindepot 0.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter to index.php.
CVE-2008-2838Jun 24, 2008
risk 0.03cvss —epss 0.04
Directory traversal vulnerability in index.php in Traindepot 0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter.