Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 6:10 a.m.2 views

SUSE CVE-2007-5824

webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote attackers to cause a denial of service NULL dereference and daemon crash via a stats method action to /xml-rpc with 1 an empty Authorization header line, which triggers a crash in the wsdecodepassword function; or 2 a...

7.1CVSS6.8AI score0.16432EPSS
Exploits0References3
NVD
NVDadded 2014/10/20 3:55 p.m.12 views

CVE-2012-5865

SQL injection vulnerability in dispatch.php in Achievo 1.4.5 allows remote authenticated users to execute arbitrary SQL commands via the activityid parameter in a stats action...

6.5CVSS7.7AI score0.01008EPSS
Exploits6References5
Prion
Prionadded 2014/10/20 3:55 p.m.18 views

Sql injection

SQL injection vulnerability in dispatch.php in Achievo 1.4.5 allows remote authenticated users to execute arbitrary SQL commands via the activityid parameter in a stats action...

6.5CVSS8.4AI score0.01008EPSS
Exploits6References5Affected Software1
Cvelist
Cvelistadded 2014/10/20 3:0 p.m.13 views

CVE-2012-5865

SQL injection vulnerability in dispatch.php in Achievo 1.4.5 allows remote authenticated users to execute arbitrary SQL commands via the activityid parameter in a stats action...

7.7AI score0.01008EPSS
Exploits6References5
NVD
NVDadded 2010/07/22 5:40 a.m.19 views

CVE-2009-4939

Multiple cross-site scripting XSS vulnerabilities in index.php in AdPeeps 8.5d1 allow remote attackers to inject arbitrary web script or HTML via the 1 uid parameter, 2 uid parameter in a loginlookup action, 3 uid parameter in an adminlogin action, 4 campaignid parameter in a createcampaign actio...

4.3CVSS5.5AI score0.02906EPSS
Exploits1References8
Prion
Prionadded 2007/06/27 12:30 a.m.11 views

Sql injection

SQL injection vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the pageid parameter in a stats action...

7.5CVSS9.1AI score0.02475EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologiesadded 2006/07/13 12:0 a.m.3 views

PT-2006-4419 · Invision · Invision Power Board

Name of the Vulnerable Software and Affected Versions: Invision Power Board version 1.3 Final Description: The issue concerns SQL injection vulnerabilities that could allow remote attackers to execute arbitrary SQL commands. This is allegedly possible via the CODE parameter in certain actions in...

7.5CVSS8.7AI score0.01525EPSS
Exploits1References9
Cvelist
Cvelistadded 2006/07/13 12:0 a.m.12 views

CVE-2006-3544

Multiple SQL injection vulnerabilities in Invision Power Board IPB 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter in a 1 Stats, 2 Mail, and 3 Reg action in index.php. NOTE: the developer has disputed this issue, stating that "At no point does the CODE...

8.4AI score0.01525EPSS
Exploits1References6
Rows per page
Query Builder