MidnightBSD

Advisories for yappa-ng

CVE-2005-1311 MEDIUM

Cross-site scripting (XSS) vulnerability in Yappa-NG before 2.3.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
yappa-ng yappa-ng 1.1
yappa-ng yappa-ng 2.1.0
yappa-ng yappa-ng 1.0
yappa-ng yappa-ng 1.6
yappa-ng yappa-ng 2.3.0
yappa-ng yappa-ng 2.0.1
yappa-ng yappa-ng 2.2.2
yappa-ng yappa-ng 1.2
yappa-ng yappa-ng 2.2.0
yappa-ng yappa-ng 1.3
yappa-ng yappa-ng 2.3.1
yappa-ng yappa-ng 1.4
yappa-ng yappa-ng 2.0.0
yappa-ng yappa-ng 2.2.1
yappa-ng yappa-ng 1.5
yappa-ng yappa-ng 0.9
CVE-2005-1312 HIGH

PHP remote file inclusion vulnerability in Yappa-NG before 2.3.2 allows remote attackers to execute arbitrary PHP code via unknown vectors.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
yappa-ng yappa-ng 1.1
yappa-ng yappa-ng 2.1.0
yappa-ng yappa-ng 1.0
yappa-ng yappa-ng 1.6
yappa-ng yappa-ng 2.3.0
yappa-ng yappa-ng 2.0.1
yappa-ng yappa-ng 2.2.2
yappa-ng yappa-ng 1.2
yappa-ng yappa-ng 2.2.0
yappa-ng yappa-ng 1.3
yappa-ng yappa-ng 2.3.1
yappa-ng yappa-ng 1.4
yappa-ng yappa-ng 2.0.0
yappa-ng yappa-ng 2.2.1
yappa-ng yappa-ng 1.5
yappa-ng yappa-ng 0.9