Vulnerabilities (CVE)

Filtered by vendor Pancake Subscribe
Filtered by product Zina
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2495 1 Pancake 1 Zina 2024-11-21 7.5 HIGH N/A
Directory traversal vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to have an unknown impact via a .. (dot dot) in the p parameter.
CVE-2008-2494 1 Pancake 1 Zina 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via the l parameter.