← Back

Telaen

telaen

Vendor: Telaen Project • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2013-2624
1Telaen Project
1Telaen
Nov 21, 2024
Feb 3, 2020
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Telean before 1.3.1 contains a full path disclosure vulnerability which could allow remote attackers to obtain sensitive information through a specially crafted URL request.
CVE-2013-2623
1Telaen Project
1Telaen
Nov 21, 2024
Feb 3, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Cross-site Scripting (XSS) in Telaen before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the "f_email" parameter in index.php.
CVE-2013-2621
1Telaen Project
1Telaen
Nov 21, 2024
Feb 3, 2020
N/A· v4
6.1 MEDIUM· v3
5.8 MEDIUM· v2
Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL.