Lucene search
K

469 matches found

OSV
OSV
added 2007/09/26 10:17 p.m.4 views

DEBIAN-CVE-2007-5105

Cross-site scripting XSS vulnerability in wp-register.php in WordPress 2.0 and 2.0.1 allows remote attackers to inject arbitrary web script or HTML via the useremail parameter...

4.3CVSS6AI score0.04381EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.8 views

MDKA-2005:048 : mdkonline

Updated mdkonline packages are now available that change the name of the main binary from MandrakeUpdate to MandrivaUpdate due to Mandriva's name change. As well, this update provides fixes the account creation and authentication based on obsolete architectures versions prior to 2006.0. The user...

Exploits0References1
Exploit DB
Exploit DB
added 2006/11/25 12:0 a.m.36 views

ASP-Nuke Community 1.5 - Cookie Privilege Escalation

Title : ASP-Nuke Community Find cookie informations. Change Informations= Cookie Informations: ASPNUKE14%5Fpseudoname , pseudoname = "Welcome USERNAME" see for ASPNUKE14%5Fpseudo , pseudo = Login UserName ASPNUKE14%5Fpseudoid , pseudoid = UserId ASPNUKE14%5Femail , email = User Email Save and go ...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2006/03/14 11:0 a.m.15 views

CVE-2006-1222

Multiple cross-site scripting XSS vulnerabilities in zeroboard 4.1 pl7 allows allow remote attackers to inject arbitrary web script or HTML via the 1 memo box title, 2 user email, and 3 homepage fields...

5.8AI score0.0176EPSS
Exploits1References9
securityvulns
securityvulns
added 2005/12/20 12:0 a.m.96 views

PHPGedView <= 3.3.7 remote code execution

--- PHPGedView = 3.3.7 Arbitrary local/remote code execution & php injection --- software: site: http://www.phpgedview.net/ description: "PhpGedView is a revolutionary genealogy program which allows you to view and edit your genealogy on your website." - vulnerabilties:...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2002/07/19 12:0 a.m.45 views

Geeklog XSS and CRLF Injection

Geeklog XSS and CRLF Injection PROGRAM: Geeklog VENDOR: Tony Bibbs et al. [email protected] HOMEPAGE: http://geeklog.sourceforge.net/ VULNERABLE VERSIONS: 1.3.5sr1, possibly earlier versions as well NOT VULNERABLE VERSIONS: 1.3.5sr2 LOGIN REQUIRED: no SEVERITY: high DESCRIPTION:...

6.5AI score
Exploits0
CVE
CVE
added 2002/03/09 5:0 a.m.78 views

CVE-2001-0660

CVE-2001-0660 affects Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier. The back-end function that processes the Global Address List (GAL) can be accessed without authentication, allowing remote attackers to identify valid user email addresses stored in the GAL. Connected sourc...

5CVSS6.4AI score0.2199EPSS
Exploits0References4Affected Software1
exploitpack
exploitpack
added 2001/07/12 12:0 a.m.16 views

Microsoft Outlook 9820002002 - Unauthorized Email Access

Microsoft Outlook 9820002002 - Unauthorized Email Access source: https://www.securityfocus.com/bid/3025/info Microsoft Outlook introduces a vulnerability that may allow attackers to access and manipulate user email. The vulnerability is due to a new ActiveX control called 'Microsoft Outlook View...

0.1AI score
Exploits0
Cvelist
Cvelist
added 2001/04/04 4:0 a.m.19 views

CVE-2001-0292

PHP-Nuke 4.4.1a allows remote attackers to modify a user's email address and obtain the password by guessing the user id UID and calling user.php with the saveuser operator...

6.8AI score0.02378EPSS
Exploits1References1
Rows per page
Query Builder