Lucene search
+L

229 matches found

CVE
CVE
added 2009/03/13 10:0 a.m.49 views

CVE-2008-6461

CVE-2008-6461 describes an SQL injection in the TYPO3 Random Prayer 2 (ste_prayer2) extension prior to version 0.0.3. The issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors, indicating a vulnerability in how user input is handled within the extension’s databas...

7.5CVSS8.6AI score0.01063EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/02/25 6:0 p.m.21 views

CVE-2008-0936

SQL injection vulnerability in index.php in the Prayer List prayerlist 1.04 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view action...

8.3AI score0.00961EPSS
Exploits1References3
CVE
CVE
added 2008/02/25 6:0 p.m.48 views

CVE-2008-0936

CVE-2008-0936 affects the XOOPS Prayer List (prayerlist) 1.04 module: an SQL injection vulnerability in index.php allows an attacker to manipulate the cid parameter in a view action to execute arbitrary SQL. The vulnerability impacts remote confidentiality and integrity (per the reported CVSS 2.0...

7.5CVSS8.3AI score0.00961EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2006/07/13 12:0 a.m.17 views

CVE-2006-3538

Multiple cross-site scripting XSS vulnerabilities in demo.php in BeatificFaith Eprayer Alpha allow remote attackers to inject arbitrary web script or HTML via the SRC attribute of a SCRIPT element in the 1 "Your name" field and 2 "Enter Prayer Request here" field...

5.8AI score0.01903EPSS
Exploits1References5
Packet Storm
Packet Storm
added 2006/06/21 12:0 a.m.17 views

eprayer.txt

Eprayer v.Alpha. Homepage: http://eprayer.sourceforge.net Affected files: input boxs of prayer request. User submitted data is not sanatized before being dynamically generated. Try putting the code below in as "Your name" Screenshots: http://www.youfucktard.com/xsp/eprayer1.jpg...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/06/16 12:0 a.m.32 views

ePrayver v.Alpha - XSS

Eprayer v.Alpha. Homepage: http://eprayer.sourceforge.net Affected files: input boxs of prayer request. User submitted data is not sanatized before being dynamically generated. Try putting the code below in as "Your name" SCRIPT SRC=http://youfucktard.com/xss.js/SCRIPT Screenshots:...

0.1AI score
Exploits0
NVD
NVD
added 2006/04/21 10:2 a.m.22 views

CVE-2006-1976

Cross-site scripting XSS vulnerability in addRequest.php in Prayer Request Board PRB Beta 1 before 20060320 allows remote attackers to inject arbitrary web script or HTML via the Request field...

2.6CVSS5.8AI score0.00904EPSS
Exploits0References2
Cvelist
Cvelist
added 2006/04/21 10:0 a.m.27 views

CVE-2006-1976

Cross-site scripting XSS vulnerability in addRequest.php in Prayer Request Board PRB Beta 1 before 20060320 allows remote attackers to inject arbitrary web script or HTML via the Request field...

5.8AI score0.00904EPSS
Exploits0References2
CVE
CVE
added 2006/04/21 10:0 a.m.34 views

CVE-2006-1976

PRB Beta 1’s addRequest.php is vulnerable to cross-site scripting (XSS) via the Request field, allowing remote attackers to inject arbitrary web script or HTML. Affected version: PRB Beta 1 before 20060320. The available documents do not provide exploit details, impact beyond script injection, or...

2.6CVSS5.8AI score0.00904EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder