AwffullCVEs & Vulnerabilities
2 CVEs affecting Awffull products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
awffull 2
CVE-2007-3299MEDIUM
Cross-site scripting (XSS) vulnerability in AWFFull before 3.7.4, when AllSearchStr (aka the All Search Terms report) is enabled, allows remote attackers to inject arbitrary web script or HTML via a search string.
21 Jun 2007
4.3
CVSS
CVE-2007-0510CRITICAL
Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) preserve.c in AWFFull 3.7.1 and earlier have unknown impact and attack vectors. NOTE: some of these details are obtained from third party information. NOTE: There may not be any attack vector that crosses privilege boundaries.
26 Jan 2007
10.0
CVSS
← PrevPage 1 / 1Next →