MidnightBSD

Advisories for booby

CVE-2003-1194 MEDIUM

Cross-site scripting (XSS) vulnerability in Booby .1 through 0.2.3 allows remote attackers to inject arbitrary web script or HTML via the error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
booby booby 0.1.3
booby booby 0.2.3
booby booby 0.1.2
booby booby 0.2.2
booby booby 0.3
booby booby 0.2
booby booby 0.1.1
booby booby 0.2.1
booby booby 0.1
CVE-2005-1631 MEDIUM

booby.php in Booby 1.0.0 and earlier allows remote attackers to view private bookmarks by guessing item IDs.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
booby booby 0.1.3
booby booby 0.2.3
booby booby 0.1.2
booby booby 0.2.2
booby booby 1.0.0
booby booby 0.3
booby booby 0.2
booby booby 0.1.1
booby booby 0.2.1
booby booby 0.1
booby booby 0.2.4