25 matches found
PT-2021-10086 · Wso2 · Wso2 Management Console
Name of the Vulnerable Software and Affected Versions: WSO2 Management Console versions through 5.10 Description: The issue allows for cross-site scripting XSS attacks via the msgId parameter in the carbon/admin/login.jsp page. This can potentially lead to privilege escalation. There have been...
Sql injection
SQL injection vulnerability in index.php in Pictures Rating Picture Rating allows remote attackers to execute arbitrary SQL commands via the msgid parameter...
CVE-2007-3881
CVE-2007-3881 describes an SQL injection in index.php of Pictures Rating (Picture Rating). The vulnerability is exploitable via the msgid parameter, allowing remote attackers to execute arbitrary SQL commands. The associated metrics show a high base score (7.5, NETWORK attack vector, no authentic...
CVE-2007-3881
SQL injection vulnerability in index.php in Pictures Rating Picture Rating allows remote attackers to execute arbitrary SQL commands via the msgid parameter...
CVE-2006-3572
SQL injection vulnerability in forumthread.php in Papoo 3 RC3 and earlier allows remote attackers to execute arbitrary SQL commands via the msgid parameter...