CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

0day.today•added 2017/10/31 12:0 a.m.•24 views

ZeeBuddy 2x - groupid SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: ZeeBuddy 2x - SQL Injection Vendor Homepage: http://www.zeescripts.com/ Software Link: http://www.zeebuddy.com/ Demo: http://www.zeebuddy.com/demo/ Version: 2x Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: CVE-2017-1597...

7.5CVSS9.2AI score0.02512EPSS

Exploits4

exploitpack•added 2017/10/30 12:0 a.m.•18 views

ZeeBuddy 2x - groupid SQL Injection

ZeeBuddy 2x - groupid SQL Injection Exploit Title: ZeeBuddy 2x - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.zeescripts.com/ Software Link: http://www.zeebuddy.com/ Demo: http://www.zeebuddy.com/demo/ Version: 2x Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...

7.5CVSS0.2AI score0.02512EPSS

Exploits4

Exploit DB•added 2017/10/30 12:0 a.m.•32 views

ZeeBuddy 2x - 'groupid' SQL Injection

Exploit Title: ZeeBuddy 2x - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.zeescripts.com/ Software Link: http://www.zeebuddy.com/ Demo: http://www.zeebuddy.com/demo/ Version: 2x Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: CVE-2017-15976 Exploit Author: Ihsan...

9.8CVSS9.7AI score0.02512EPSS

Exploits4

OSV•added 2017/10/29 6:29 a.m.•1 views

CVE-2017-15976

ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604...

9.8CVSS5.8AI score

Exploits0References2

Cvelist•added 2017/10/29 6:0 a.m.•16 views

CVE-2017-15976

ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604...

9.9AI score0.02512EPSS

Exploits4References2

CVE•added 2017/10/29 6:0 a.m.•68 views

CVE-2017-15976

CVE-2017-15976 affects ZeeBuddy 2x and is a SQL injection vulnerability accessible via the GET parameter groupid in admin/editadgroup.php. The issue arises from unsanitized user input in this parameter, enabling an attacker to inject SQL commands, potentially altering or extracting data. Public r...

9.8CVSS9.8AI score0.02512EPSS

Exploits4References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by