Lucene search
+L

379 matches found

CVE
CVE
added 2006/09/25 1:0 a.m.42 views

CVE-2006-4976

CVE-2006-4976 : The Date Library in John Lim ADOdb Library for PHP permits remote information disclosure via direct requests to a large set of files across the package. Affected areas include: server.php, adodb-.inc.php (adodb-errorpear.inc.php, adodb-iterator.inc.php, adodb-pear.inc.php, adodb-p...

5CVSS6.3AI score0.01403EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2006/09/14 10:7 a.m.19 views

CVE-2006-4785

SQL injection vulnerability in blog/edit.php in Moodle 1.6.1 and earlier allows remote attackers to execute arbitrary SQL commands via the format parameter as stored in the $blogEntry variable, which is not properly handled by the insertrecord function, which calls adodbcolumnsql in the adodb lay...

7.5CVSS8AI score0.02838EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2006/09/14 10:7 a.m.39 views

CVE-2006-4785

SQL injection vulnerability in blog/edit.php in Moodle 1.6.1 and earlier allows remote attackers to execute arbitrary SQL commands via the format parameter as stored in the $blogEntry variable, which is not properly handled by the insertrecord function, which calls adodbcolumnsql in the adodb lay...

7.5CVSS6.2AI score0.02838EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/09/14 10:0 a.m.30 views

CVE-2006-4785

SQL injection vulnerability in blog/edit.php in Moodle 1.6.1 and earlier allows remote attackers to execute arbitrary SQL commands via the format parameter as stored in the $blogEntry variable, which is not properly handled by the insertrecord function, which calls adodbcolumnsql in the adodb lay...

8AI score0.02838EPSS
Exploits0References11
CVE
CVE
added 2006/09/14 10:0 a.m.58 views

CVE-2006-4785

Moodle

7.5CVSS8AI score0.02838EPSS
Exploits0References11Affected Software1
securityvulns
securityvulns
added 2006/09/14 12:0 a.m.100 views

ADOdb Date Library Full path Bugs

Hello,, ADOdb Date Library, part of the ADOdb abstraction library Full path bugs Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : [email protected] ADOdb Date Library, part of the ADOdb abstraction library Full path adodb/server.php...

1.2AI score
Exploits0
NVD
NVD
added 2006/09/07 12:4 a.m.11 views

CVE-2006-4618

PHP remote file inclusion vulnerability in adodb-postgres7.inc.php in John Lim ADOdb, possibly 4.01 and earlier, as used in Intechnic In-link 2.3.4, allows remote attackers to execute arbitrary PHP code via a URL in the ADODBDIR parameter...

5.1CVSS7.6AI score0.01653EPSS
Exploits0References5
CVE
CVE
added 2006/09/07 12:0 a.m.45 views

CVE-2006-4605

The CVE describes a PHP remote file inclusion vulnerability in Longino Jacome php-Revista 1.1.2, exploitable via the adodb parameter in index.php, allowing remote attackers to execute arbitrary PHP code. The NVD entry records a CVSS v2 base score of 7.5 (HIGH) with network attack vector and low a...

7.5CVSS8AI score0.03832EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2006/09/07 12:0 a.m.52 views

CVE-2006-4618

CVE-2006-4618 : PHP remote file inclusion in the ADODB PostgreSQL integration (adodb-postgres7.inc.php) within John Lim ADOdb, potentially affected versions ≤ 4.01, used by Intechnic In-link 2.3.4. An attacker can supply a URL via the ADODB_DIR parameter to execute arbitrary PHP code on the serve...

5.1CVSS7.7AI score0.01653EPSS
Exploits0References5Affected Software1
Packet Storm
Packet Storm
added 2006/09/07 12:0 a.m.22 views

inlink234.txt

================================================================= in-link =2.3.4 adodb-postgres7.inc.php Remote File Inclusion Exploit ================================================================ Critical Level : Dangerous By Saudi Hackrz http://www.in-portal.net/...

7.4AI score
Exploits0
CVE
CVE
added 2006/09/07 12:0 a.m.44 views

CVE-2004-2664

The CVE-2004-2664 entry concerns the John Lim ADOdb Library for PHP prior to 4.23. The vulnerability arises when direct requests to certain scripts cause ADODB_DIR to be undefined, leading to an error message that reveals the installation path. This is an information-disclosure flaw that can aid ...

5CVSS6.3AI score0.01175EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2006/09/07 12:0 a.m.21 views

CVE-2004-2664

John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODBDIR, which reveals the installation path in an error message...

5CVSS6.2AI score0.01175EPSS
Exploits0
Cvelist
Cvelist
added 2006/09/07 12:0 a.m.21 views

CVE-2004-2664

John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODBDIR, which reveals the installation path in an error message...

6.3AI score0.01175EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2006/09/07 12:0 a.m.19 views

CVE-2006-4618

PHP remote file inclusion vulnerability in adodb-postgres7.inc.php in John Lim ADOdb, possibly 4.01 and earlier, as used in Intechnic In-link 2.3.4, allows remote attackers to execute arbitrary PHP code via a URL in the ADODBDIR parameter...

5.1CVSS7.4AI score0.01653EPSS
Exploits0
seebug.org
seebug.org
added 2006/09/04 12:0 a.m.23 views

In-link <= 2.3.4 (ADODB_DIR) Remote File Include Vulnerabilities

No description provided by source. ================================================================= in-link =2.3.4 adodb-postgres7.inc.php Remote File Inclusion Exploit ================================================================ Critical Level : Dangerous By Saudi Hackrz...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/09/04 12:0 a.m.22 views

In-link 2.3.4 - ADODB_DIR Remote File Inclusion

In-link 2.3.4 - ADODBDIR Remote File Inclusion ================================================================= in-link =2.3.4 adodb-postgres7.inc.php Remote File Inclusion Exploit ================================================================ Critical Level : Dangerous By Saudi Hackrz...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2006/09/04 12:0 a.m.41 views

in-link <=2.3.4 (adodb-postgres7.inc.php) Remote File Inclusion Exploit

================================================================= in-link =2.3.4 adodb-postgres7.inc.php Remote File Inclusion Exploit ================================================================ Critical Level : Dangerous By Saudi Hackrz http://www.in-portal.net/...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/09/04 12:0 a.m.43 views

In-link 2.3.4 - 'ADODB_DIR' Remote File Inclusion

================================================================= in-link =2.3.4 adodb-postgres7.inc.php Remote File Inclusion Exploit ================================================================ Critical Level : Dangerous By Saudi Hackrz http://www.in-portal.net/...

7.4AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2006/06/29 12:0 a.m.25 views

Tikiwiki: SQL injection and multiple XSS vulnerabilities

Background Tikiwiki is a web-based groupware and content management system CMS, using PHP, ADOdb and Smarty. Description Tikiwiki fails to properly sanitize user input before processing it, including in SQL statements. Impact An attacker could execute arbitrary SQL statements on the underlying...

7.5CVSS7.2AI score0.01799EPSS
Exploits1
exploitpack
exploitpack
added 2006/06/26 12:0 a.m.21 views

ADODB 4.64.7 - Tmssql.php Cross-Site Scripting

ADODB 4.64.7 - Tmssql.php Cross-Site Scripting source: https://www.securityfocus.com/bid/18638/info ADOdb is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...

6.8AI score
Exploits0
Rows per page
Query Builder