Vulnerabilities (CVE)

Filtered by vendor Yngve Svendsen Subscribe
Filtered by product Gnatsweb
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-2808 2 Gnu, Yngve Svendsen 2 Gnats, Gnatsweb 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or HTML via the database parameter.
CVE-2001-0808 1 Yngve Svendsen 1 Gnatsweb 2024-11-20 10.0 HIGH N/A
gnatsweb.pl in GNATS GnatsWeb 2.7 through 3.95 allows remote attackers to execute arbitrary commands via certain characters in the help_file parameter.