santafox CVE Vulnerabilities & CVE List (2)

Products (CPE): — CVEs: 2

santafox vulnerability overview

This page aggregates publicly disclosed CVE and security risk information related to santafox, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

Vulnerability distribution trend (last 24 months)

Showing 12 of 2 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2010-3464 Cross-site request forgery (CSRF) vulnerability in admin/manager_users.class.php in SantaFox 2.02, and possibly earlier, allows remote attackers to hijack the authentication of administrators for requests, as demonstrated by adding administrative users via the save_admin action to admin/index.php. [email protected] 6.8 0.64% 2010-09-17 2026-06-16
CVE-2010-3463 Cross-site scripting (XSS) vulnerability in modules/search/search.class.php in SantaFox 2.02, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the search parameter to search.html. [email protected] 4.3 1.10% 2010-09-17 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence