Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | Gnew 2013.1 - Multiple Vulnerabilities | 2 Oct 201300:00 | – | zdt |
 | CVE-2013-5640 | 1 Apr 201403:24 | – | attackerkb |
 | CVE-2013-5640 | 1 Apr 201400:00 | – | cvelist |
 | Gnew 2013.1 - Multiple Vulnerabilities (2) | 2 Oct 201300:00 | – | exploitdb |
 | EUVD-2013-5480 | 7 Oct 202500:30 | – | euvd |
 | Gnew 2013.1 - Multiple Vulnerabilities (2) | 2 Oct 201300:00 | – | exploitpack |
 | Multiple Vulnerabilities in Gnew | 28 Aug 201300:00 | – | htbridge |
 | CVE-2013-5640 | 1 Apr 201403:24 | – | nvd |
 | Gnew 2013.1 PHP File Inclusion / SQL Injection | 2 Oct 201300:00 | – | packetstorm |
 | Sql injection | 1 Apr 201403:24 | – | prion |
10
Node
| Source | Link |
|---|---|
| exploit-db | www.exploit-db.com/exploits/28684 |
| htbridge | www.htbridge.com/advisory/HTB23171 |
| packetstormsecurity | www.packetstormsecurity.com/files/123482 |
| securityfocus | www.securityfocus.com/bid/62817 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| gnew_language | header | /users/login.php | PHP File Inclusion via cookie input to login script (gnew_language) allowing remote file inclusion | CWE-98 |
| friend_email | request body | /news/send.php | SQL Injection via friend_email POST parameter in news/send.php | CWE-89 |
| user_email | request body | /users/register.php | SQL Injection via user_email POST parameter in users/register.php | CWE-89 |
| add_vote | request body | /polls/vote.php | SQL Injection via answer_id POST parameter in polls/vote.php | CWE-89 |
| answer_id | request body | /polls/vote.php | SQL Injection via answer_id POST parameter in polls/vote.php | CWE-89 |
| add_vote | request body | /polls/vote.php | SQL Injection via question_id POST parameter in polls/vote.php | CWE-89 |
| question_id | request body | /polls/vote.php | SQL Injection via question_id POST parameter in polls/vote.php | CWE-89 |
| story_id | request body | /comments/add.php | SQL Injection via story_id POST parameter in comments/add.php | CWE-89 |
| story_id | request body | /comments/edit.php | SQL Injection via story_id POST parameter in comments/edit.php | CWE-89 |
| thread_id | request body | /posts/add.php | SQL Injection via thread_id POST parameter in posts/add.php | CWE-89 |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
06 May 2026 22:30Current
8.4High risk
Vulners AI Score8.4
CVSS 27.5
EPSS0.00817