Lucene search
+L

6638 matches found

Prion
Prion
added 2007/02/06 7:28 p.m.19 views

Sql injection

SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in cancel edit functions, possibly related to the id parameter...

6.8CVSS9.1AI score0.00999EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/02/06 7:28 p.m.15 views

Sql injection

SQL injection vulnerability in view.php in Noname Media Photo Galerie Standard 1.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01217EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/02/06 7:0 p.m.22 views

CVE-2007-0789

SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in cancel edit functions, possibly related to the id parameter...

8.4AI score0.00999EPSS
Exploits0References4
Prion
Prion
added 2007/01/30 4:28 p.m.11 views

Sql injection

SQL injection vulnerability in newsdetail.asp in ASP NEWS 3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01217EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/01/19 11:0 p.m.41 views

CVE-2007-0374

SQL injection vulnerability in 1 Joomla! 1.0.11 and 1.5 Beta, and 2 Mambo 4.6.1, allows remote attackers to execute arbitrary SQL commands via the id parameter when cancelling content editing...

8.3AI score0.01213EPSS
Exploits2References5
Prion
Prion
added 2007/01/19 1:28 a.m.41 views

Sql injection

SQL injection vulnerability in email.php in MGB OpenSource Guestbook 0.5.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01989EPSS
Exploits1References8Affected Software1
Positive Technologies
Positive Technologies
added 2007/01/19 12:0 a.m.11 views

PT-2007-1825 · Mgb · Mgb Opensource Guestbook

Name of the Vulnerable Software and Affected Versions: MGB OpenSource Guestbook versions 0.5.4.5 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the id parameter in the email.php file. Recommendations: For MGB OpenSource Guestbook...

7.5CVSS7.4AI score0.01989EPSS
Exploits1References10
Prion
Prion
added 2007/01/18 12:28 a.m.17 views

Sql injection

SQL injection vulnerability in duyuru.asp in MiNT Haber Sistemi 2.7 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01034EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/01/18 12:28 a.m.11 views

Sql injection

SQL injection vulnerability in etkinlikbak.asp in Okul Web Otomasyon Sistemi 4.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01264EPSS
Exploits0References7Affected Software1
Prion
Prion
added 2007/01/18 12:28 a.m.12 views

Sql injection

SQL injection vulnerability in visuuser.asp in Digiappz DigiAffiliate 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01061EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/01/13 2:28 a.m.15 views

CVE-2006-6930

SQL injection vulnerability in viewad.asp in Rapid Classified 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01216EPSS
Exploits1References7
Cvelist
Cvelist
added 2007/01/13 2:0 a.m.24 views

CVE-2006-6927

Multiple SQL injection vulnerabilities in Rialto 1.6 allow remote attackers to execute arbitrary SQL commands via 1 the uname username and 2 pword passwd fields in a admin/default.asp; the 3 ID parameter to b listfull.asp or c printmain.asp; the 4 cat parameter to d listmain.asp, e...

8.5AI score0.01187EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2007/01/13 12:0 a.m.16 views

PT-2007-1209 · Rapid · Rapid Classified

Name of the Vulnerable Software and Affected Versions: Rapid Classified version 3.1 Description: The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting XSS attacks. This can be achieved through various parameters in different scripts,...

6.8CVSS6AI score0.0213EPSS
Exploits1References12
Prion
Prion
added 2007/01/09 11:28 a.m.18 views

Sql injection

SQL injection vulnerability in user.php in iGeneric iG Calendar 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01264EPSS
Exploits0References7Affected Software1
Prion
Prion
added 2007/01/05 6:28 p.m.13 views

Sql injection

SQL injection vulnerability in page.php in Simple Web Content Management System allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01745EPSS
Exploits1References8
Prion
Prion
added 2007/01/04 10:28 p.m.15 views

Sql injection

SQL injection vulnerability in haberdetay.asp in Vizayn Haber allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.01202EPSS
Exploits1References6
NVD
NVD
added 2006/12/28 9:28 p.m.13 views

CVE-2006-6806

SQL injection vulnerability in newsdetail.asp in Enthrallweb eMates 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...

7.5CVSS8.4AI score0.01016EPSS
Exploits1References3
NVD
NVD
added 2006/12/28 9:28 p.m.20 views

CVE-2006-6805

SQL injection vulnerability in newsdetail.asp in Enthrallweb eJobs allows remote attackers to execute arbitrary SQL commands via the ID parameter...

7.5CVSS8.4AI score0.01016EPSS
Exploits1References3
CVE
CVE
added 2006/12/28 9:0 p.m.44 views

CVE-2006-6804

CVE-2006-6804 affects Dragon Business Directory - Pro (aka Dragon Internet Business Search Directory - Pro) and is due to an SQL injection in bus_details.asp. The vulnerability is exploitable via the ID parameter in versions 3.01.12 and earlier. Impacted data can be partially disclosed or corrupt...

7.5CVSS8.8AI score0.00995EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2006/12/21 1:28 a.m.17 views

CVE-2006-6671

SQL injection vulnerability in down.asp in Burak Yylmaz Download Portal allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01013EPSS
Exploits0References5
Rows per page
Query Builder