Every CVE whose affected-product data names Eyeos Project Eyeos, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2005-3414 — CVSS 7.5 (high): eyeOS 0.8.4 stores usrinfo.xml under the web document root with insufficient access control, which allows remote attackers to obtain user…
CVE-2006-0636 — CVSS 7.5 (high): desktop.php in eyeOS 0.8.9 and earlier tests for the existence of the _SESSION variable before calling the session_start function, which…
CVE-2007-4609 — CVSS 6.4 (medium): eyeOS uses predictable checksum values in the checknum parameter for access control, which allows remote attackers to register many…
CVE-2005-3413 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in desktop.php in eyeOS 0.8.4 allows remote attackers to inject arbitrary web script or HTML via…
CVE-2006-5071 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in eyeOS before 0.9.1 allow remote attackers to inject arbitrary web script or HTML via…