Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-6538 | 1 Holger Schurig | 1 Destar | 2017-09-28 | 5.0 MEDIUM | N/A |
DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/CfgOptUser. | |||||
CVE-2008-6539 | 1 Holger Schurig | 1 Destar | 2017-09-28 | 6.5 MEDIUM | N/A |
Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destar_cfg.py via a crafted pin parameter. |