Open Source Development Network Slashcode — known CVE vulnerabilities
Every CVE whose affected-product data names Open Source Development Network Slashcode, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2000-1015 — CVSS 7.5 (high): The default configuration of Slashcode before version 2.0 Alpha has a default administrative password, which allows remote attackers to…
CVE-2002-1748 — CVSS 7.2 (high): Unknown vulnerability in Slash 2.1.x and 2.2 through 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to…
CVE-2002-1681 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote attackers to execute arbitrary…
CVE-2001-1535 — CVSS 4.6 (medium): Slashcode 2.0 creates new accounts with an 8-character random password, which could allow local users to obtain session ID's from cookies…
CVE-2004-2656 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) before…
CVE-2002-0292 — CVSS 2.6 (low): Cross-site scripting vulnerability in Slash before 2.2.5, as used in Slashcode and elsewhere, allows remote attackers to steal cookies and…