Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open source development network slashcode vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2000-1015
The default configuration of Slashcode before version 2.0 Alpha has a default administrative password, which allows remote malicious users to gain Slashcode privileges and possibly execute arbitrary commands.
Open Source Development Network Slashcode
7.2
CVSSv2
CVE-2002-1748
Unknown vulnerability in Slash 2.1.x and 2.2 up to and including 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to arbitrary accounts.
Open Source Development Network Slashcode 2.2.2
Open Source Development Network Slashcode 2.1
Open Source Development Network Slashcode 2.1.1
Open Source Development Network Slashcode 2.2
Open Source Development Network Slashcode 2.2.1
6.8
CVSSv2
CVE-2002-1681
Cross-site scripting (XSS) vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote malicious users to execute arbitrary script as other users by injecting script into the paragraph <P> tag.
Open Source Development Network Slashcode 2.2.2
Open Source Development Network Slashcode 2.2.3
Open Source Development Network Slashcode 2.2.4
Open Source Development Network Slashcode 2.2.5
Open Source Development Network Slashcode 2.2.1
4.6
CVSSv2
CVE-2001-1535
Slashcode 2.0 creates new accounts with an 8-character random password, which could allow local users to obtain session ID's from cookies and gain unauthorized access via a brute force attack.
Open Source Development Network Slashcode 2.0
4.3
CVSSv2
CVE-2004-2656
Multiple cross-site scripting (XSS) vulnerabilities in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) before R_2_5_0_41 allow remote malicious users to inject arbitrary web script or HTML via (1) the topic parameter in search.pl and (2) the filter parameter...
Open Source Development Network Slashcode
Open Source Development Network Slashcode 2.2.5
2.6
CVSSv2
CVE-2002-0292
Cross-site scripting vulnerability in Slash prior to 2.2.5, as used in Slashcode and elsewhere, allows remote malicious users to steal cookies and authentication information from other users via Javascript in a URL, possibly in the formkey field.
Open Source Development Network Slashcode 2.1
Open Source Development Network Slashcode 2.1.1
Open Source Development Network Slashcode 2.0
Open Source Development Network Slashcode 2.2.2
Open Source Development Network Slashcode 2.2.3
Open Source Development Network Slashcode 2.2.4
Open Source Development Network Slashcode
Open Source Development Network Slashcode 2.2
Open Source Development Network Slashcode 2.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started