Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor National Rail Enquiries Subscribe
Filtered by product National Rail Enquiries Live Departure Boards
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2011 1 National Rail Enquiries 1 National Rail Enquiries Live Departure Boards 2017-08-07 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the National Rail Enquiries Live Departure Boards gadget before 1.1 allows remote National Rail Enquiries servers or man-in-the-middle attackers to inject arbitrary web script or HTML, and execute arbitrary code, via a response body, as demonstrated by a SCRIPT element that references a vbscript: URI.