| Max CVSS | 5.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-5834 | 4.3 |
Cross-site scripting (XSS) vulnerability in BosDev BosNews 4 allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element in a news post.
|
15-10-2018 - 21:46 | 05-11-2007 - 19:46 | |
| CVE-2007-5833 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in BosDev BosMarket Business Directory System allow remote authenticated users to inject arbitrary web script or HTML via (1) user info (account details) or (2) a post.
|
15-10-2018 - 21:46 | 05-11-2007 - 19:46 | |
| CVE-2007-5835 | 5.0 |
Install.php in BosDev BosNews 4 and 5 does not require authentication for replacing an existing product installation or creating a new admin account, which allows remote attackers to cause a denial of service (overwritten files) and possibly obtain a
|
15-10-2018 - 21:46 | 05-11-2007 - 19:46 |