Lucene search
K

290 matches found

NVD
NVD
added 2006/06/15 10:2 a.m.14 views

CVE-2006-3020

Multiple cross-site scripting XSS vulnerabilities in FullPhoto.asp in WS-Album 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 image and 2 PublisedDate parameters...

6.8CVSS5.8AI score0.01412EPSS
Exploits1References5
Cvelist
Cvelist
added 2006/06/15 10:0 a.m.15 views

CVE-2006-3020

Multiple cross-site scripting XSS vulnerabilities in FullPhoto.asp in WS-Album 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 image and 2 PublisedDate parameters...

5.8AI score0.01412EPSS
Exploits1References5
NVD
NVD
added 2006/05/09 10:2 a.m.8 views

CVE-2006-2262

Cross-site scripting XSS vulnerability in index.php in singapore 0.9.7 allows remote attackers to inject arbitrary web script or HTML via the image parameter...

2.6CVSS5.7AI score0.02166EPSS
Exploits1References8
Prion
Prion
added 2006/05/09 10:2 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in singapore 0.9.7 allows remote attackers to inject arbitrary web script or HTML via the image parameter...

2.6CVSS6.1AI score0.02166EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2005/12/14 8:7 p.m.14 views

CVE-2005-1930

Directory traversal vulnerability in the Crystal Report component rptserver.asp in Trend Micro ServerProtect Management Console 5.58, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Server 1.1, and possibly earlier versions, allows remote attackers to read arbitrary files via the IMAGE...

5CVSS6.8AI score0.01916EPSS
Exploits0References7
CVE
CVE
added 2005/07/19 4:0 a.m.46 views

CVE-2004-2266

CVE-2004-2266 affects Ansel 2.1 and earlier. The issue is a SQL injection vulnerability that allows remote attackers to modify SQL statements via the image parameter. According to the provided data, the NVD CVSS v2.0 base score is 7.5 (HIGH) with network attack vector, low attack complexity, no a...

7.5CVSS8.1AI score0.01333EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2005/07/19 4:0 a.m.15 views

CVE-2004-2266

SQL injection vulnerability in Ansel 2.1 and earlier allows remote attackers to modify SQL statements via the image parameter...

7.6AI score0.01333EPSS
Exploits0References6
NVD
NVD
added 2005/06/09 4:0 a.m.12 views

CVE-2005-1896

Directory traversal vulnerability in thumb.php in FlatNuke 2.5.3 allows remote attackers to read arbitrary images or obtain the installation path via the image parameter...

5CVSS6.8AI score0.01954EPSS
Exploits1References5
NVD
NVD
added 2005/05/03 4:0 a.m.16 views

CVE-2005-1403

Multiple cross-site scripting XSS vulnerabilities in JustWilliam's Amazon Webstore 04050100 allow remote attackers to inject arbitrary web script or HTML via the 1 image parameter to closeup.php, the 2 currentIsExpanded or 3 searchFor parameters to index.php, 4 the currentNumber parameter to...

6.8CVSS5.8AI score0.05731EPSS
Exploits1References10
NVD
NVD
added 2004/12/31 5:0 a.m.10 views

CVE-2004-2266

SQL injection vulnerability in Ansel 2.1 and earlier allows remote attackers to modify SQL statements via the image parameter...

7.5CVSS7.6AI score0.01333EPSS
Exploits0References6
Rows per page
Query Builder