OpenCVE

Filtered by vendor Annuaire Subscriptions

Filtered by product Directory Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2006-1434	1 Annuaire	1 Directory	2024-11-21	N/A
Cross-site scripting (XSS) vulnerability in inscription.php in Annuaire (Directory) 1.0 allows remote attackers to inject arbitrary web script or HTML via the Comment Field (COMMENTAIRE parameter).
CVE-2006-1433	1 Annuaire	1 Directory	2024-11-21	N/A
Annuaire (Directory) 1.0 allows remote attackers to obtain sensitive information via a direct request to include/lang-en.php, which reveals the full installation path.

Page 1 of 1.