Lucene search
K

1488 matches found

Prion
Prion
added 2006/04/11 6:6 p.m.13 views

Sql injection

SQL injection vulnerability in admin.php in Design Nation DNGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 email and 2 id parameters...

7.6CVSS9.1AI score0.01759EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2006/04/11 6:6 p.m.20 views

CVE-2006-1710

SQL injection vulnerability in admin.php in Design Nation DNGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 email and 2 id parameters...

7.6CVSS8.4AI score0.01759EPSS
Exploits1References5
Prion
Prion
added 2006/04/06 10:4 a.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in news.php in CzarNews 1.14 allows remote attackers to inject arbitrary web script or HTML via the email parameter...

2.6CVSS6.1AI score0.01667EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2006/04/06 10:0 a.m.26 views

CVE-2006-1640

Cross-site scripting XSS vulnerability in news.php in CzarNews 1.14 allows remote attackers to inject arbitrary web script or HTML via the email parameter...

5.7AI score0.01667EPSS
Exploits0References9
Prion
Prion
added 2006/03/21 1:6 a.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 entry and 2 email parameters to a print.php and b mail.php...

6.4CVSS9.2AI score0.02301EPSS
Exploits0References11Affected Software1
Prion
Prion
added 2006/03/09 12:2 a.m.18 views

Sql injection

SQL injection vulnerability in forgottenpassword.php in Jonathan Beckett PluggedOut Nexus 0.1 allows remote attackers to execute arbitrary SQL commands via the email parameter...

7.5CVSS9.1AI score0.01827EPSS
Exploits1References8Affected Software1
securityvulns
securityvulns
added 2006/03/03 12:0 a.m.29 views

PluggedOut Nexus SQL injection

PluggedOut Nexus SQL injection Nexus is an open source script you can run on your web server to give you a community based website where people can register, search each others interests, and communicate with one another either through a private messaging system, or via chat requests and forums...

7.6AI score
Exploits0
Prion
Prion
added 2006/02/19 11:2 a.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in weblog.pl in PerlBlog 1.09b and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 email parameters...

4.3CVSS6.1AI score0.01299EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2006/02/19 11:2 a.m.9 views

CVE-2006-0780

Multiple cross-site scripting XSS vulnerabilities in weblog.pl in PerlBlog 1.09b and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 email parameters...

4.3CVSS5.8AI score0.01299EPSS
Exploits1References6
Prion
Prion
added 2006/02/19 12:2 a.m.13 views

Code injection

Unspecified vulnerability in guestex.pl in Teca Scripts Guestex 1.0 allows remote attackers to execute arbitrary shell commands via the email parameter, possibly involving shell metacharacters...

7.5CVSS8.2AI score0.02342EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2006/02/19 12:0 a.m.21 views

CVE-2006-0777

Unspecified vulnerability in guestex.pl in Teca Scripts Guestex 1.0 allows remote attackers to execute arbitrary shell commands via the email parameter, possibly involving shell metacharacters...

7.7AI score0.02342EPSS
Exploits1References8
NVD
NVD
added 2006/02/07 6:6 p.m.16 views

CVE-2006-0573

Multiple cross-site scripting XSS vulnerabilies in cPanel 10 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 email parameter to a editquota.html or b dodelpop.html; 2 showtree parameter to c diskusage.html; or the 3 mon, 4 year, 5 target, or 6 domain parameter ...

4.3CVSS5.7AI score0.02526EPSS
Exploits1References9
Prion
Prion
added 2006/01/10 11:3 a.m.17 views

Sql injection

SQL injection vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown, although it may be based on post-disclosure analysis of CVE-2006-0110; the details are obtained...

7.5CVSS8.4AI score0.01976EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2006/01/07 12:3 a.m.14 views

Sql injection

SQL injection vulnerability in mcllogin.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the origina...

7.5CVSS8.4AI score0.0133EPSS
Exploits2References4
NVD
NVD
added 2006/01/07 12:3 a.m.24 views

CVE-2006-0110

Cross-site scripting XSS vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary web script via the email parameter...

4.3CVSS5.7AI score0.01976EPSS
Exploits1References7
NVD
NVD
added 2006/01/07 12:3 a.m.11 views

CVE-2006-0108

SQL injection vulnerability in mcllogin.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the origina...

7.5CVSS7.9AI score0.0133EPSS
Exploits1References4
Prion
Prion
added 2006/01/07 12:3 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary web script via the email parameter...

4.3CVSS6AI score0.01976EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/01/07 12:0 a.m.24 views

CVE-2006-0110

Cross-site scripting XSS vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary web script via the email parameter...

5.7AI score0.01976EPSS
Exploits1References7
securityvulns
securityvulns
added 2006/01/03 12:0 a.m.65 views

[SA18268] phpBook "email" PHP Code Injection Vulnerability

TITLE: phpBook "email" PHP Code Injection Vulnerability SECUNIA ADVISORY ID: SA18268 VERIFY ADVISORY: http://secunia.com/advisories/18268/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: phpBook 1.x http://secunia.com/product/6719/ DESCRIPTION: Aliaksandr Hartsuyeu ha...

0.8AI score
Exploits0
Cvelist
Cvelist
added 2006/01/01 11:0 p.m.18 views

CVE-2005-4597

Cross-site scripting XSS vulnerability in index.php in iPei Guestbook 1.7 allows remote attackers to inject arbitrary web script or HTML via the email parameter, as used by the email field, when signing a guestbook...

5.6AI score0.01177EPSS
Exploits0References5
Rows per page
Query Builder