1-scriptCVEs & Vulnerabilities
2 CVEs affecting 1-script products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
1-book 11-search 1
CVE-2008-2638CRITICALpoc
Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and earlier allows remote attackers to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php.
10 Jun 2008
10.0
CVSS
CVE-2005-4091MEDIUMpoc
Cross-site scripting (XSS) vulnerability in 1search.cgi in 1-Script 1-Search 1.8 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
8 Dec 2005
4.3
CVSS
← PrevPage 1 / 1Next →