Filtered by vendor Silent-storm Subscriptions
Filtered by product Silent-storm Portal Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2004-1567 1 Silent-storm 1 Silent-storm Portal 2024-11-20 N/A
profile.php in Silent Storm Portal 2.1 and 2.2 allows remote attackers to gain privileges by setting the mail parameter to 1, which is the value for an administrator.
CVE-2004-1566 1 Silent-storm 1 Silent-storm Portal 2024-11-20 N/A
Cross-site scripting (XSS) vulnerability in index.php in Silent Storm Portal 2.1 and 2.2 allows remote attackers to execute arbitrary web script or HTML via the module parameter.