Lucene search
+L

30 matches found

cve
cve
added 2006/11/24 6:0 p.m.42 views

CVE-2006-6082

CVE-2006-6082 affects the CreaScripts Creadirectory component. The documented issue is multiple XSS vulnerabilities that allow remote attackers to inject arbitrary script or HTML via the (1) cat parameter to addlisting.asp or (2) the search parameter to search.asp. The root cause is insufficient ...

4.3CVSS6AI score0.01906EPSS
Exploits1References7Affected Software1
ptsecurity
ptsecurity
added 2006/11/24 12:0 a.m.5 views

PT-2006-6727 · Creascripts · Creascripts Creadirectory

Name of the Vulnerable Software and Affected Versions: CreaScripts Creadirectory affected versions not specified Description: The issue concerns multiple cross-site scripting XSS vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. Specifically, th...

4.3CVSS5.8AI score0.01906EPSS
Exploits1References10
ptsecurity
ptsecurity
added 2006/11/24 12:0 a.m.7 views

PT-2006-6728 · Creascripts · Creascripts Creadirectory

Name of the Vulnerable Software and Affected Versions: CreaScripts Creadirectory affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the category parameter in the "search.asp" file. This can lead to unauthorized access and...

7.5CVSS7.5AI score0.01214EPSS
Exploits1References8
securityvulns
securityvulns
added 2006/11/22 12:0 a.m.47 views

creadirectory [injection sql & xss]

vendor site: http://www.creascripts.com/ product:creadirectory bug: injection sql & xss risk : medium injection sql: /search.asp?search=1&submit=Search&category='sql xss: /addlisting.asp?cat=xss /search.asp?search=xss laurent gaffi & benjamin moss http://s-a-p.ca/ contact: [email protected]...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2006/11/21 12:0 a.m.17 views

CreaDirectory 1.2 - search.asp?search Cross-Site Scripting

CreaDirectory 1.2 - search.asp?search Cross-Site Scripting source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2006/11/21 12:0 a.m.16 views

CreaDirectory 1.2 - search.asp?category SQL Injection

CreaDirectory 1.2 - search.asp?category SQL Injection source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficientl...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2006/11/21 12:0 a.m.11 views

CreaDirectory 1.2 - addlisting.asp?cat Cross-Site Scripting

CreaDirectory 1.2 - addlisting.asp?cat Cross-Site Scripting source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to...

6.8AI score
Exploits0
exploitdb
exploitdb
added 2006/11/21 12:0 a.m.22 views

CreaDirectory 1.2 - 'search.asp?search' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2006/11/21 12:0 a.m.29 views

CreaDirectory 1.2 - 'addlisting.asp?cat' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2006/11/21 12:0 a.m.34 views

CreaDirectory 1.2 - 'search.asp?category' SQL Injection

source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues...

7.4AI score
Exploits0
Rows per page
Query Builder