Aggregates CVE and security vulnerability intelligence across all telaen_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting, vendor risk open redirect, and vendor risk path handling, with potential vendor impact file overwrite across vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2013-2624 | Telean before 1.3.1 contains a full path disclosure vulnerability which could allow remote attackers to obtain sensitive information through a specially crafted URL request. | [email protected] | 5.3 | 8.66% | 2020-02-03 | 2024-11-21 |
| CVE-2013-2623 | Cross-site Scripting (XSS) in Telaen before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the "f_email" parameter in index.php. | [email protected] | 6.1 | 2.63% | 2020-02-03 | 2024-11-21 |
| CVE-2013-2621 | Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL. | [email protected] | 6.1 | 10.19% | 2020-02-03 | 2024-11-21 |