Lucene search
K

46 matches found

EUVD
EUVD
added 2026/05/10 3:31 p.m.22 views

EUVD-2022-55987

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET requests...

6.1CVSS5.7AI score0.00252EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/10 12:12 p.m.47 views

CVE-2022-50966 uBidAuction 2.0.1 news manage Reflected XSS

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET requests...

6.1CVSS0.00252EPSS
Exploits0References4
CVE
CVE
added 2026/05/10 12:12 p.m.14 views

CVE-2022-50966

CVE-2022-50966 affects uBidAuction 2.0.1 in the news/manage module. The vulnerability is a reflected XSS in which the filter functionality does not properly sanitize the date_created, date_from, date_to, and created_at parameters, allowing an attacker to inject malicious scripts via crafted GET r...

6.1CVSS5.7AI score0.00252EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/10 12:0 a.m.22 views

PT-2026-39491

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The date created, date from, date to, and created at parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET reques...

6.1CVSS5.7AI score0.00252EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5250

Malware in sbrugna...

7.5CVSS6.4AI score0.01003EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-6629

Malware in sbrugna...

7.5CVSS6.4AI score0.02561EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-5251

Malware in sbrugna...

5CVSS6.4AI score0.02142EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/05 12:0 a.m.4 views

NEWS-BUZZ 安全漏洞

NEWS-BUZZ is a news management system by the individual developer ANIRBAN DUTTA that allows users to publish and manage various news content. A security vulnerability exists in NEWS-BUZZ v1.0, which stems from an improper operation of the parameter delete in the file /admin/users.php, which could...

8.8CVSS6.9AI score0.00389EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/06/05 12:0 a.m.4 views

NEWS-BUZZ 安全漏洞

NEWS-BUZZ is a news management system by the individual developer ANIRBAN DUTTA that allows users to post and manage various news content. A security vulnerability exists in NEWS-BUZZ v1.0, which stems from improper manipulation of the parameter post in the file /publicposts.php, which could lead...

9.8CVSS7.7AI score0.00478EPSS
Exploits1References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/03/24 8:40 a.m.3 views

Cute News vulnerable to PHP code execution

Overview Cute News provided by CutePHP.com is a system to manage news. Cute News contains a PHP code execution vulnerability CWE-94. During the meeting of Committee for authorizing the disclosure of unresolved vulnerabilities held on January 16, 2020, it was judged that an advisory for this...

9CVSS7.8AI score0.0205EPSS
Exploits0References4
CNVD
CNVD
added 2017/09/01 12:0 a.m.2 views

EBCMS (News & Information Version) v1.8.2 Exists Arbitrary User Password Reset Vulnerability

EBCMS short for EBCMS is a modular plug-in website management system based on PHP+Mysql. EBCMS News v1.8.2 there are arbitrary user password reset vulnerability vulnerability. The vulnerability is due to the program logic checks are not strict , the attacker can remotely reset any user password...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

A+ PHP Scripts News Management System 0.3 Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/29912/info A+ PHP Scripts News Management System is prone to multiple input-validation vulnerabilities, including a remote file-include issue, multiple local file-include issues, and a cross-site scripting issue. An...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Todd Woolums ASP News Management 2.2 - SQL Injection Vulnerabiltiy

No description provided by source. |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /\ \L\ /\ /\ \ \ \ \ \ \ / /\ \L\ \ | |...

7.1AI score
Exploits0
myhack58
myhack58
added 2011/07/25 12:0 a.m.26 views

YothCMS traversal directory vulnerability-vulnerability warning-the black bar safety net

Preferably a science and technology enterprise website management systemYothCMSis a completely open source free CMS that! YothCMS by Shijiazhuang preferably science and Technology Co., Ltd. The development of a completely open source build system, mainly for enterprises to quickly build simple,...

0.2AI score
Exploits0
myhack58
myhack58
added 2010/06/19 12:0 a.m.22 views

Happy people news management system mofei_new injection exploit-vulnerability warning-the black bar safety net

Happy people news system mofeinew existSQL injectionattack vulnerability GOOGLE keywords: inurl:mofeilist. asp? id= ! Can be thrown directly. D for injectionneeds its own plus a fields: usename to guess ! mofeilogin. asp background address ! The background can capture upload Trojan Note that in t...

1.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/22 12:0 a.m.29 views

WB News 2.3.3 Stored Cross Site Scripting

Title: WB News Webmobo 2.3.3 Stored XSS Vendor: http://www.webmobo.org/ AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability44.htm Thanks: r3dm0v3 r3dm0v3atymail.com,...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/04/21 12:0 a.m.29 views

wb news (webmobo) 2.3.3 - Persistent Cross-Site Scripting

Title: WB News Webmobo 2.3.3 Stored XSS Vendor: http://www.webmobo.org/ AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability44.htm Thanks: r3dm0v3 r3dm0v3atymail.com,...

7.4AI score
Exploits0
NVD
NVD
added 2009/04/08 10:30 a.m.25 views

CVE-2008-6667

A+ PHP Scripts News Management System NMS allows remote attackers to bypass authentication and gain administrator privileges by setting the mobsuser and mobspass cookies to 1...

7.5CVSS7.2AI score0.02561EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/04/05 12:0 a.m.19 views

CuteNews Detection (HTTP)

HTTP based detection of CuteNews. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.100105";...

7.4AI score
Exploits0References1
NVD
NVD
added 2008/11/28 7:0 p.m.18 views

CVE-2008-5273

SQL injection vulnerability in viewnews.asp in Todd Woolums ASP News Management 2.2 allows remote attackers to execute arbitrary SQL commands via the newsID parameter...

7.5CVSS8.4AI score0.01003EPSS
Exploits1References5
Rows per page
Query Builder