| Max CVSS | 6.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-3716 | 6.0 |
Cross-site request forgery (CSRF) vulnerability in Harmoni before 1.6.0 allows remote attackers to make administrative modifications via a (1) save or (2) delete action to an unspecified component. Download Harmoni 1.6.0 at Sourceforge:
http://sou
|
29-09-2017 - 01:31 | 19-08-2008 - 19:41 | |
| CVE-2008-3717 | 5.0 |
Harmoni before 1.6.0 does not require administrative privileges to list (1) user names or (2) asset ids, which allows remote attackers to obtain sensitive information. Download Harmoni 1.6.0 at Sourceforge:
http://sourceforge.net/project/showfiles
|
08-08-2017 - 01:32 | 19-08-2008 - 19:41 |