Lucene search
K

354 matches found

NVD
NVD
added 2006/06/13 1:2 a.m.25 views

CVE-2006-2988

Cross-site scripting XSS vulnerability in dictionary.php in Chemical Dictionary allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a browse action...

4.3CVSS5.7AI score0.01275EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/06/13 1:0 a.m.21 views

CVE-2006-2988

Cross-site scripting XSS vulnerability in dictionary.php in Chemical Dictionary allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a browse action...

5.7AI score0.01275EPSS
Exploits0References6
Prion
Prion
added 2006/05/10 2:14 a.m.13 views

Sql injection

SQL injection vulnerability in searchresult.asp in EDirectoryPro 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

6.4CVSS8.8AI score0.0121EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2006/05/04 12:38 p.m.16 views

CVE-2006-2189

SQL injection vulnerability in search.php in Servous sBLOG 0.7.2 allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: this issue can be used to trigger path disclosure. In addition, it might be primary to vector 1 in CVE-2006-1135...

10CVSS8.1AI score0.02395EPSS
Exploits1References7
Prion
Prion
added 2006/05/04 12:38 p.m.17 views

Sql injection

SQL injection vulnerability in search.php in Servous sBLOG 0.7.2 allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: this issue can be used to trigger path disclosure. In addition, it might be primary to vector 1 in CVE-2006-1135...

10CVSS8.6AI score0.02395EPSS
Exploits2References7Affected Software1
Cvelist
Cvelist
added 2006/04/20 10:0 a.m.15 views

CVE-2006-1889

Cross-site scripting XSS vulnerability in the search action handler in index.php in Nils Asmussen aka SCRIPTSOLUTION Boardsolution 1.12 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Search for" item keyword parameter...

5.7AI score0.01373EPSS
Exploits0References8
NVD
NVD
added 2006/01/09 11:3 a.m.7 views

CVE-2006-0122

Cross-site scripting XSS vulnerability in Public/Index.asp in Aquifer CMS allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter...

4.3CVSS5.7AI score0.02125EPSS
Exploits1References6
Prion
Prion
added 2006/01/09 11:3 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in Public/Index.asp in Aquifer CMS allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter...

4.3CVSS6.1AI score0.02125EPSS
Exploits1References6
Cvelist
Cvelist
added 2006/01/09 11:0 a.m.13 views

CVE-2006-0122

Cross-site scripting XSS vulnerability in Public/Index.asp in Aquifer CMS allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter...

5.7AI score0.02125EPSS
Exploits1References6
NVD
NVD
added 2005/12/29 11:3 a.m.11 views

CVE-2005-4571

Cross-site scripting XSS vulnerability in myEZshop Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.6AI score0.01177EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/12/29 11:0 a.m.20 views

CVE-2005-4571

Cross-site scripting XSS vulnerability in myEZshop Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.6AI score0.01177EPSS
Exploits0References4
CVE
CVE
added 2005/12/29 11:0 a.m.40 views

CVE-2005-4571

The provided documents confirm a Cross-site scripting (XSS) vulnerability in the myEZshop Shopping Cart . The issue allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter. No explicit root cause or vulnerable version is stated in the sources; the impact is limite...

4.3CVSS5.8AI score0.01177EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2005/12/20 11:0 a.m.17 views

CVE-2005-4420

Cross-site scripting XSS vulnerability in Honeycomb Archive Enterprise 3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the keyword parameter in search.cfm...

5.8AI score0.01177EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.14 views

sBLOG <= 0.7.2 search.php keyword Parameter SQL Injection

Binary data 3528.prm...

10CVSS7.3AI score0.02395EPSS
Exploits1References3
Rows per page
Query Builder