Lucene search

Portal System Beta Security Vulnerabilities

cve

CVE-2007-0259

Ezboxx Portal System Beta 0.7.6 and earlier allows remote attackers to obtain sensitive information via an invalid cat parameter to boxx/knowledgebase.asp, which reveals the path in an error...

6.2AI Score

0.008EPSS

2007-01-16 11:28 PM

cve

CVE-2007-0265

Multiple cross-site scripting (XSS) vulnerabilities in Ezboxx Portal System Beta 0.7.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the pic parameter to custom/piczoom.asp, (2) the nocatname parameter to boxx/user-upload.asp, or (3) the iid parameter to...

5.8AI Score

0.028EPSS

2007-01-16 11:28 PM

cve

CVE-2007-0266

SQL injection vulnerability in boxx/ShowAppendix.asp in Ezboxx Portal System Beta 0.7.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the iid...

7.3AI Score

0.011EPSS

2007-01-16 11:28 PM

cve

CVE-2005-4221

SQL injection vulnerability in link.php in Arab Portal System 2 Beta 2 allows remote attackers to execute arbitrary SQL commands via the (1) PHPSESSID (session ID) or (2) REQUEST_URI (query...

8.8AI Score

0.111EPSS

2005-12-14 11:03 AM