Filtered by vendor Schoolalumni Portal Subscriptions
Filtered by product Schoolalumni Portal Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-5529 1 Schoolalumni Portal 1 Schoolalumni Portal 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in smumdadotcom_ascyb_alumni/mod.php in SchoolAlumni Portal 2.26 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search operation in the katalog module. NOTE: some of these details are obtained from third party information.
CVE-2006-5528 1 Schoolalumni Portal 1 Schoolalumni Portal 2024-11-21 N/A
Directory traversal vulnerability in mod.php in SchoolAlumni Portal 2.26 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter. NOTE: some of these details are obtained from third party information.