CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in error.asp in CreaScripts CreaDirectory 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-6083...

7.5CVSS8.7AI score0.01347EPSS

Exploits2References4Affected Software1

NVD•added 2007/04/27 4:19 p.m.•11 views

CVE-2007-2342

SQL injection vulnerability in error.asp in CreaScripts CreaDirectory 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-6083...

7.5CVSS8.2AI score0.01347EPSS

Exploits1References4

CVE•added 2007/04/27 4:0 p.m.•39 views

CVE-2007-2342

CVE-2007-2342 describes an SQL injection in error.asp of CreaScripts CreaDirectory 1.2. The vulnerability allows remote attackers to execute arbitrary SQL commands via the id parameter, as a different vector from CVE-2006-6083. According to the NVD entry, the issue is exploitable over a network w...

7.5CVSS8.3AI score0.01347EPSS

Exploits1References4Affected Software1

NVD•added 2006/11/24 6:7 p.m.•14 views

CVE-2006-6082

Multiple cross-site scripting XSS vulnerabilities in CreaScripts Creadirectory allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to addlisting.asp or the 2 search parameter to search.asp...

4.3CVSS5.8AI score0.02207EPSS

Exploits1References7

NVD•added 2006/11/24 6:7 p.m.•11 views

CVE-2006-6083

SQL injection vulnerability in search.asp in CreaScripts Creadirectory allows remote attackers to execute arbitrary SQL commands via the category parameter...

7.5CVSS8.2AI score0.00612EPSS

Exploits1References6

Cvelist•added 2006/11/24 6:0 p.m.•19 views

CVE-2006-6082

5.8AI score0.02207EPSS

Exploits1References7

CVE•added 2006/11/24 6:0 p.m.•36 views

CVE-2006-6082

CVE-2006-6082 affects the CreaScripts Creadirectory component. The documented issue is multiple XSS vulnerabilities that allow remote attackers to inject arbitrary script or HTML via the (1) cat parameter to addlisting.asp or (2) the search parameter to search.asp. The root cause is insufficient ...

4.3CVSS6AI score0.02207EPSS

Exploits1References7Affected Software1

Cvelist•added 2006/11/24 6:0 p.m.•22 views

CVE-2006-6083

SQL injection vulnerability in search.asp in CreaScripts Creadirectory allows remote attackers to execute arbitrary SQL commands via the category parameter...

8.2AI score0.00612EPSS

Exploits1References6

CVE•added 2006/11/24 6:0 p.m.•44 views

CVE-2006-6083

The CVE-2006-6083 entry affects CreaScripts Creadirectory : the vulnerability is an SQL injection in the search.asp page where the category parameter is unsafely used. This allows remote attackers to execute arbitrary SQL commands. The known impact is consistent with an attacker gaining unauthori...

7.5CVSS8.3AI score0.00612EPSS

Exploits1References6Affected Software1

Positive Technologies•added 2006/11/24 12:0 a.m.•4 views

PT-2006-6728 · Creascripts · Creascripts Creadirectory

Name of the Vulnerable Software and Affected Versions: CreaScripts Creadirectory affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the category parameter in the "search.asp" file. This can lead to unauthorized access and...

7.5CVSS7.5AI score0.00612EPSS

Exploits1References8

Positive Technologies•added 2006/11/24 12:0 a.m.•3 views

PT-2006-6727 · Creascripts · Creascripts Creadirectory

Name of the Vulnerable Software and Affected Versions: CreaScripts Creadirectory affected versions not specified Description: The issue concerns multiple cross-site scripting XSS vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. Specifically, th...

4.3CVSS5.8AI score0.02207EPSS

Exploits1References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by