This page aggregates publicly disclosed CVE and security risk information related to cds_software_consortium, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2008-1627 | CDS Invenio 0.92.1 and earlier allows remote authenticated users to delete email notification alerts of arbitrary users via a modified internal UID. | [email protected] | 3.5 | 0.54% | 2008-04-02 | 2026-04-23 |
| CVE-2006-5384 | PHP remote file inclusion vulnerability in modification/SendAlertEmail.php in CDS Software Consortium CDS Agenda 4.2.9 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AGE parameter. | [email protected] | 7.5 | 7.91% | 2006-10-18 | 2026-04-23 |