Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-3552

Malware in sbrugna...

7.5CVSS6.4AI score0.01939EPSS
Exploits1References11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.36 views

PHPKit <= 1.6.1 R2 overview.php SQL injection Vulnerability Exploit

No description provided by source. ----------------------------Information------------------------------------------------ +Name : PHPKit = 1.6.1 R2 overview.php SQL injection Vulnerability Exploit +Autor : Easy Laster +Date : 22.10.2010 +Script : PHPKit 1.6.1 R2 +Price : free +Language : PHP...

7.1AI score
Exploits0
NVD
NVD
added 2012/10/08 10:47 a.m.15 views

CVE-2010-5279

article.php in Virtual War aka VWar 1.6.1 R2 allows remote attackers to cause a denial of service memory consumption via a large integer in the ratearticleselect parameter...

5CVSS6.6AI score0.01288EPSS
Exploits1References2
NVD
NVD
added 2012/10/08 10:47 a.m.14 views

CVE-2010-5064

Multiple cross-site scripting XSS vulnerabilities in Virtual War aka VWar 1.6.1 R2 allow remote attackers to inject arbitrary web script or HTML via 1 the Additional Information field to challenge.php, the 2 Additional Information or 3 Contact information field to joinus.php, 4 the War Report fie...

4.3CVSS5.6AI score0.00984EPSS
Exploits1References2
CVE
CVE
added 2012/10/08 10:0 a.m.54 views

CVE-2010-5066

CVE-2010-5066 affects Virtual War (VWar) 1.6.1 R2. The createRandomPassword function in includes/functions_common.php uses a small seed range for mt_srand, which reduces randomness and Leaks passwords to brute-force attempts by remote attackers. Root cause: limited seed space for the PHP random g...

4.3CVSS6.9AI score0.01179EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2012/10/08 10:0 a.m.23 views

CVE-2010-5064

Multiple cross-site scripting XSS vulnerabilities in Virtual War aka VWar 1.6.1 R2 allow remote attackers to inject arbitrary web script or HTML via 1 the Additional Information field to challenge.php, the 2 Additional Information or 3 Contact information field to joinus.php, 4 the War Report fie...

5.6AI score0.00984EPSS
Exploits1References2
Prion
Prion
added 2007/01/11 12:28 a.m.19 views

Sql injection

SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the subid parameter...

7.5CVSS9AI score0.0101EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2007/01/11 12:0 a.m.27 views

CVE-2007-0179

SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the subid parameter...

8.4AI score0.0101EPSS
Exploits1References4
NVD
NVD
added 2005/12/20 11:3 a.m.15 views

CVE-2005-4424

Directory traversal vulnerability in PHPKIT 1.6.1 R2 and earlier might allow remote authenticated users to execute arbitrary PHP code via a .. dot dot in the path parameter and a %00 at the end of the filename, as demonstrated by an avatar filename ending with .png%00...

6.5CVSS7.2AI score0.01724EPSS
Exploits0References7
NVD
NVD
added 2005/11/16 7:42 a.m.15 views

CVE-2005-3553

Multiple SQL injection vulnerabilities in include.php in PHPKIT 1.6.1 R2 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 id parameter in conjunction with the login/userinfo.php path and 2 the session parameter aka the PHPKITSID variable...

7.5CVSS8.5AI score0.01939EPSS
Exploits1References10
Rows per page
Query Builder