Search
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-2796 | 1 Projectpier | 1 Projectpier | 2020-05-06 | 4.3 MEDIUM | 6.1 MEDIUM |
| Multiple cross-site scripting (XSS) vulnerabilities in Project-Pier ProjectPier-Core allow remote attackers to inject arbitrary web script or HTML via the search_for parameter to (1) search_by_tag.php, (2) search_contacts.php, or (3) search.php. | |||||
| CVE-2013-3636 | 1 Projectpier | 1 Projectpier | 2020-02-10 | 3.5 LOW | 5.4 MEDIUM |
| ProjectPier 0.8.8 has a Remote Information Disclosure Weakness because of the lack of the HttpOnly cookie flag | |||||
| CVE-2013-3637 | 1 Projectpier | 1 Projectpier | 2020-02-10 | 3.5 LOW | 5.4 MEDIUM |
| ProjectPier 0.8.8 does not use the Secure flag for cookies | |||||
| CVE-2013-3635 | 1 Projectpier | 1 Projectpier | 2020-02-10 | 3.5 LOW | 5.4 MEDIUM |
| ProjectPier 0.8.8 has stored XSS | |||||