Lucene search
K

36 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-0627

Malware in sbrugna...

4.3CVSS6.4AI score0.02662EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-0626

Malware in sbrugna...

6.5CVSS6.4AI score0.03313EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2008-0628

Malware in sbrugna...

4.3CVSS6.4AI score0.01514EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-0625

Malware in sbrugna...

4CVSS6.4AI score0.03476EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/21 8:17 p.m.6 views

CVE-2008-0618

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 gbname, 2 gbemail, 3 gburl, and 4 gbmsg parameters to unspecified programs. NOTE: the provenance of this information i...

4.3CVSS6AI score0.01514EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2014/12/29 12:0 a.m.19 views

WordPress Dmsguestbook Unauthenticated Data Injection

http://packetstormsecurity.com/user/evex/ Author:Evex Title: WordPress dmsguestbook Plugin File Manipulation Description: wordpress dmsguestbook plugin is vulnerable to a file manipulation security issue it allows an unauthenicated attacker to put text into existing text files only " . "saved",...

1AI score
Exploits0
WPVulnDB
WPVulnDB
added 2014/08/01 12:0 a.m.17 views

dmsguestbook 1.7.0 - Multiple Remote Vulnerabilities

The dmsguestbook WordPress plugin was affected by a Multiple Remote Vulnerabilities security vulnerability...

6.5CVSS2.3AI score0.03476EPSS
Exploits2References2Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

wordpress plugin dmsguestbook 1.7.0 - Multiple Vulnerabilities

No description provided by source. Wordpress Plugin dmsguestbook 1.7.0 Multiple Remote Vulnerabilities by NBBN 2nd, February 2008 1 File Disclosure Open the following url you can see the config data of wordpress, with the mysql-server username and password. In this file you usually have write...

7.1AI score
Exploits0
NVD
NVD
added 2008/02/06 12:0 p.m.14 views

CVE-2008-0617

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter to wp-admin/admin.php, or the 2 messagefield parameter in the guestbook page, and the 3 title parameter in the...

4.3CVSS5.9AI score0.02662EPSS
Exploits1References4
Prion
Prion
added 2008/02/06 12:0 p.m.14 views

Sql injection

SQL injection vulnerability in the administration panel in the DMSGuestbook 1.7.0 plugin for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors. NOTE: it is not clear whether this issue crosses privilege boundaries...

6.5CVSS8.5AI score0.03313EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2008/02/06 12:0 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter to wp-admin/admin.php, or the 2 messagefield parameter in the guestbook page, and the 3 title parameter in the...

4.3CVSS6.2AI score0.02662EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2008/02/06 12:0 p.m.23 views

CVE-2008-0615

Directory traversal vulnerability in wp-admin/admin.php in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the 1 folder and 2 file parameters...

4CVSS6.3AI score0.03476EPSS
Exploits1References5
Prion
Prion
added 2008/02/06 12:0 p.m.18 views

Directory traversal

Directory traversal vulnerability in wp-admin/admin.php in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the 1 folder and 2 file parameters...

4CVSS6.7AI score0.03476EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2008/02/06 12:0 p.m.17 views

CVE-2008-0616

SQL injection vulnerability in the administration panel in the DMSGuestbook 1.7.0 plugin for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors. NOTE: it is not clear whether this issue crosses privilege boundaries...

6.5CVSS7.8AI score0.03313EPSS
Exploits0References4
Prion
Prion
added 2008/02/06 12:0 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 gbname, 2 gbemail, 3 gburl, and 4 gbmsg parameters to unspecified programs. NOTE: the provenance of this information i...

4.3CVSS6.1AI score0.01514EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2008/02/06 11:0 a.m.24 views

CVE-2008-0616

SQL injection vulnerability in the administration panel in the DMSGuestbook 1.7.0 plugin for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors. NOTE: it is not clear whether this issue crosses privilege boundaries...

7.8AI score0.03313EPSS
Exploits0References4
Cvelist
Cvelist
added 2008/02/06 11:0 a.m.30 views

CVE-2008-0615

Directory traversal vulnerability in wp-admin/admin.php in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the 1 folder and 2 file parameters...

6.3AI score0.03476EPSS
Exploits1References5
Cvelist
Cvelist
added 2008/02/06 11:0 a.m.32 views

CVE-2008-0618

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 gbname, 2 gbemail, 3 gburl, and 4 gbmsg parameters to unspecified programs. NOTE: the provenance of this information i...

5.9AI score0.01514EPSS
Exploits0References1
CVE
CVE
added 2008/02/06 11:0 a.m.64 views

CVE-2008-0618

CVE-2008-0618 affects the WordPress DMSGuestbook plugin in versions 1.7.0 and 1.8.0. The issue is cross-site scripting (XSS) via the parameters gbname, gbemail, gburl, and gbmsg, allowing remote attackers to inject arbitrary scripts/HTML. Root cause is insecure handling of user-supplied input in ...

4.3CVSS5.8AI score0.01514EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2008/02/06 11:0 a.m.25 views

CVE-2008-0617

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter to wp-admin/admin.php, or the 2 messagefield parameter in the guestbook page, and the 3 title parameter in the...

5.9AI score0.02662EPSS
Exploits1References4
Rows per page
Query Builder