Lucene search
+L

72 matches found

cnvd
cnvd
added 2018/12/11 12:0 a.m.4 views

Infovista VistaPortal SE Cross-Site Scripting Vulnerability (CNVD-2019-07218)

Infovista VistaPortal SE is a Web-based application from Infovista USA. A cross-site scripting vulnerability exists in the '/VPortal/mgtconsole/Subscribers.jsp' page in Infovista VistaPortal SE version 5.1 build 51029, which can be exploited by a remote attacker with the help of the The...

6.1CVSS5.9AI score0.01081EPSS
Exploits2References1
cnvd
cnvd
added 2017/10/31 12:0 a.m.4 views

ZeeBuddy SQL Injection Vulnerability

ZeeBuddy is a social networking system based on PHP and MySQL. A SQL injection vulnerability exists in ZeeBuddy version 2x. A remote attacker can exploit this vulnerability by sending the 'groupid' parameter to the admin/editadgroup.php file to inject SQL commands to access or modify database dat...

9.8CVSS8.2AI score0.0305EPSS
Exploits4References1
zdt
zdt
added 2017/10/31 12:0 a.m.40 views

ZeeBuddy 2x - groupid SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: ZeeBuddy 2x - SQL Injection Vendor Homepage: http://www.zeescripts.com/ Software Link: http://www.zeebuddy.com/ Demo: http://www.zeebuddy.com/demo/ Version: 2x Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: CVE-2017-1597...

7.5CVSS9.2AI score0.0305EPSS
Exploits4
osv
osv
added 2017/10/29 6:29 a.m.4 views

CVE-2017-15976

ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604...

9.8CVSS5.8AI score0.0305EPSS
Exploits4References2
prion
prion
added 2017/10/29 6:29 a.m.18 views

Sql injection

ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604...

7.5CVSS9.9AI score0.03534EPSS
Exploits5References2Affected Software1
cvelist
cvelist
added 2017/10/29 6:0 a.m.30 views

CVE-2017-15976

ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604...

9.9AI score0.0305EPSS
Exploits4References2
cnvd
cnvd
added 2016/10/14 12:0 a.m.3 views

SQL Injection Vulnerability in Groupid Parameter of EAP Digital Campus Integration Management Platform of Guangzhou Zhongda Dongri Education Technology Co.

EAP platform, abbreviated as EAP Enterprise Application Platform, enterprise application platform, also known as enterprise management software platform, is a highly open, integrated with a number of enterprise management software modules. Ltd. EAP digital campus integrated management platform...

7.8AI score
Exploits0References1
prion
prion
added 2014/01/16 9:55 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in fs-admin/wpf-add-forum.php in the ForumPress WP Forum Server plugin before 1.7.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the groupid parameter in an addforum action to wp-admin/admin.php...

4.3CVSS6.3AI score0.01976EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2012/08/07 10:55 p.m.15 views

CVE-2012-4178

SQL injection vulnerability in spywall/includes/deptUploadsdata.php in Symantec Web Gateway 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via the groupid parameter...

7.5CVSS8.4AI score0.01237EPSS
Exploits1References4
prion
prion
added 2012/08/07 10:55 p.m.17 views

Sql injection

SQL injection vulnerability in spywall/includes/deptUploadsdata.php in Symantec Web Gateway 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via the groupid parameter...

7.5CVSS9.1AI score0.01237EPSS
Exploits1References4Affected Software1
prion
prion
added 2007/12/28 9:46 p.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in Wallpaper Site 1.0.09 allow remote attackers to execute arbitrary SQL commands via 1 the catid parameter to category.php or 2 the groupid parameter to editadgroup.php...

7.5CVSS9.3AI score0.00987EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2006/11/17 12:0 a.m.6 views

PT-2006-6622 · Infinicart · Infinicart

Name of the Vulnerable Software and Affected Versions: INFINICART affected versions not specified Description: The issue concerns SQL injection vulnerabilities that could allow remote attackers to execute arbitrary SQL commands. This is possible via several parameters in different ASP files,...

7.5CVSS8.7AI score0.01194EPSS
Exploits0References10
Rows per page
Query Builder