Lucene search
K

7738 matches found

Prion
Prion
added 2009/10/11 10:30 p.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...

7.5CVSS9.2AI score0.02082EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2009/10/11 10:30 p.m.14 views

CVE-2009-3666

Cross-site scripting XSS vulnerability in index.php in Nullam Blog 0.1.2 allows remote attackers to inject arbitrary web script or HTML via the e parameter in an error action...

4.3CVSS5.7AI score0.02967EPSS
Exploits1References5
CVE
CVE
added 2009/10/11 10:0 p.m.41 views

CVE-2009-3666

CVE-2009-3666: Nullam Blog 0.1.2 is affected by a Cross-site scripting (XSS) vulnerability in index.php, exploitable via the e parameter in an error action. The OpenVAS entry labels it as part of "Nullam Blog Multiple Vulnerabilities" with CVSS base 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P). Documents exp...

4.3CVSS5.7AI score0.02967EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2009/10/11 10:0 p.m.18 views

CVE-2009-3665

Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...

8.5AI score0.02082EPSS
Exploits0References5
Cvelist
Cvelist
added 2009/10/11 10:0 p.m.17 views

CVE-2009-3666

Cross-site scripting XSS vulnerability in index.php in Nullam Blog 0.1.2 allows remote attackers to inject arbitrary web script or HTML via the e parameter in an error action...

5.7AI score0.02967EPSS
Exploits1References5
CVE
CVE
added 2009/10/11 10:0 p.m.45 views

CVE-2009-3665

CVE-2009-3665 refers to multiple SQL injection vulnerabilities in Nullam Blog 0.1.2. The flaw is in the site’s index.php, specifically in the register action, where the parameters (1) i and (2) v can be exploited to execute arbitrary SQL commands remotely. The vulnerability is described with a ba...

7.5CVSS8.5AI score0.02082EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2009/10/11 10:0 p.m.44 views

CVE-2009-3664

CVE-2009-3664 affects Nullam Blog 0.1.2. The vulnerability is a directory traversal in index.php that allows remote attackers to include or execute arbitrary files via a .. in the p or s parameters. This can lead to partial impacts on confidentiality, integrity, and availability (per CVSS 2.0 bas...

7.5CVSS7.4AI score0.05974EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2009/10/11 10:0 p.m.16 views

CVE-2009-3664

Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. dot dot in the 1 p and 2 s parameters...

7.4AI score0.05974EPSS
Exploits1References5
myhack58
myhack58
added 2009/10/09 12:0 a.m.23 views

Sina-and the news, etc. blog generic hang horse method+MP3 0day to use the tool-vulnerability warning-the black bar safety net

Article author: eskry Some time ago has been studying the site of violence promotion In the study by blogs violence when promoting a slightly. And share with you This will use a small tool Is a period of time before a lot of people said MP3 0day I wrote one to use the tool To a couple of friends ...

7.3AI score
Exploits0
Prion
Prion
added 2009/10/08 5:30 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...

4.3CVSS6.1AI score0.01033EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2009/10/08 5:30 p.m.11 views

CVE-2009-3594

Cross-site scripting XSS vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...

4.3CVSS5.7AI score0.01033EPSS
Exploits0References4
Cvelist
Cvelist
added 2009/10/08 5:0 p.m.19 views

CVE-2009-3594

Cross-site scripting XSS vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...

5.7AI score0.01033EPSS
Exploits0References4
CVE
CVE
added 2009/10/08 5:0 p.m.41 views

CVE-2009-3594

CVE-2009-3594 is a cross-site scripting (XSS) vulnerability in BLOB Blog System, affecting versions before 1.2. The issue arises in bpost.php via the postid parameter, enabling remote attackers to inject arbitrary script/HTML. The NVD/OpenVAS entries corroborate a non-authenticated web parameter ...

4.3CVSS5.7AI score0.01033EPSS
Exploits0References4Affected Software1
Check Point Advisories
Check Point Advisories
added 2009/09/30 12:0 a.m.6 views

WordPress RSS feed Generator self_link HTTP_HOST Cross-Site Scripting (CVE-2008-5278)

WordPress is an opensource php-based blog publishing platform. It offers several features such as multi-author editing capability, automatic formatting of text and an architecture which supports plugins to further extend its functionality. There exists a cross-site script insertion vulnerability ...

4.3CVSS6.7AI score0.03233EPSS
Exploits1
securityvulns
securityvulns
added 2009/09/28 12:0 a.m.151 views

[ONSEC-09-016] Blogolet XSS

ONSEC-09-016 Blogolet XSS Цель: Blogolet CMS Тип: Межсайтовый скриптинг Угроза: Средняя Дата обнаружения: 21.09.2009 Дата оповещения разработчика: 21.09.2009 Дата выхода исправления: 21.09.2009 Автор: Vladimir Vorontsov OnSec Russian Security Group onsec dot ru Описание: Уязвимости существуют из-...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/09/25 12:0 a.m.26 views

Klonet E-Commerce products.php SQL Injection

No description provided by source. \ \ / | / / | \ / / /\ \ \ / / \ \ \ | | / \ / \ | / | | \ /| | / ///\ \ /| /| /\ | / / / / / / Info============================================================= Software : Klonet E-Commerce vendor : http://www.klotnet.com/ Date : 09/26/2009 Indonesia...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/21 12:0 a.m.44 views

ProdLer 2.0 - Remote File Inclusion

In The Name Of Allah ProdLer = 2.0 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/prodler/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog : http://sh3ll4u.blogspot.com Dork : No DoRk f0R ScRipT KiDDieS file :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/21 12:0 a.m.55 views

Loggix Project 9.4.5 - Multiple Remote File Inclusions

In The Name Of Allah Loggix Project = 9.4.5 Multiple Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/loggix/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog : http://sh3ll4u.blogspot.com Dork : No DoRk f0R ScRipT...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/09/21 12:0 a.m.34 views

Loggix Project <= 9.4.5 Multiple Remote File Include Vulnerability

No description provided by source. In The Name Of Allah Loggix Project = 9.4.5 Multiple Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/loggix/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog :...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/09/21 12:0 a.m.24 views

Loggix Project 9.4.5 - Multiple Remote File Inclusions

Loggix Project 9.4.5 - Multiple Remote File Inclusions In The Name Of Allah Loggix Project = 9.4.5 Multiple Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/loggix/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog :...

0.1AI score
Exploits0
Rows per page
Query Builder