CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1491 matches found

securityvulns•added 2001/07/16 12:0 a.m.•27 views

Дырка в AdCycle

Недостаточная проверка ввода опльзователя при составлении SQL-запроса...

0.6AI score

Exploits0References2Affected Software1

NVD•added 2001/06/27 4:0 a.m.•10 views

CVE-2001-0425

AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information...

7.5CVSS7.4AI score0.04587EPSS

Exploits1References2

securityvulns•added 2001/05/29 12:0 a.m.•45 views

TWIG SQL query bugs

I can't find the person who really in charge on developing twig, so I mail about this bug to the person who announce new version of twig about two month ago. -------------------------------------------------------------------------- Subject: Unquoted SQL query = potential damage Software package:...

7.8AI score

Exploits0

CVE•added 2001/05/24 4:0 a.m.•41 views

CVE-2001-0425

CVE-2001-0425 affects AdLibrary.pm in AdCycle 0.78b. The vulnerability stems from a malformed Agent: header in HTTP requests, which is inserted into a login-verification SQL query, enabling remote attackers to gain privileges. Documents explicitly describe the component and the root cause (SQL in...

7.5CVSS7.8AI score0.04587EPSS

Exploits1References2Affected Software1

Cvelist•added 2001/05/24 4:0 a.m.•12 views

CVE-2001-0425

7.4AI score0.04587EPSS

Exploits1References2

NVD•added 2001/05/03 4:0 a.m.•8 views

CVE-2001-0234

NewsDaemon before 0.21b allows remote attackers to execute arbitrary SQL queries and gain privileges via a malformed userusername parameter...

7.5CVSS8AI score0.00861EPSS

Exploits1References3

Cvelist•added 2001/03/09 5:0 a.m.•11 views

CVE-2001-0201

The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program...

7.9AI score0.00861EPSS

Exploits1References3

securityvulns•added 2001/01/18 12:0 a.m.•22 views

Дырка в postaci (SQL query modification)

недостаточная проверка ввода пользователя дает возможность модифицировать SQL-запрос...

1.1AI score

Exploits0References1

exploitpack•added 2000/12/05 12:0 a.m.•10 views

IBM DB2 - Universal Database for Windows NT 6.17.1 SQL Denial of Service

IBM DB2 - Universal Database for Windows NT 6.17.1 SQL Denial of Service source: https://www.securityfocus.com/bid/2067/info IBM DB2 Universal Database is a distributed database application. It may be possible for a database user to crash the server through a bug in handling certain queries. If a...

8AI score

Exploits0

exploitpack•added 2000/08/21 12:0 a.m.•8 views

PHP-Nuke 1.02.5 - Administrative Privileges

PHP-Nuke 1.02.5 - Administrative Privileges source: https://www.securityfocus.com/bid/1592/info PHP-Nuke is a website creation/maintainence tool written in PHP3. It is possible to elevate priviliges in this system from normal user to administrator due to a flaw in authentication code. The problem...

0.4AI score

Exploits0

CVE•added 2000/04/10 4:0 a.m.•63 views

CVE-2000-0202

CVE-2000-0202 affects Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0. A malformed SELECT statement in an SQL query allows remote attackers to gain privileges. The connected OpenVAS entry corroborates multiple MSSQL vulnerabilities; however, exploitation details, affected versions b...

7.5CVSS7.4AI score0.12616EPSS

Exploits0References2Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by