Lucene search
K

1341 matches found

OpenVAS
OpenVAS
added 2010/03/23 12:0 a.m.19 views

Xoops Celepar <= 2.2.4 Multiple Vulnerabilities - Active Check

Xoops Celepar is prone to multiple vulnerabilities. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.6AI score
Exploits0References4
NVD
NVD
added 2010/03/15 9:30 p.m.21 views

CVE-2009-4713

Multiple cross-site scripting XSS vulnerabilities in the Qas aka Quas module for XOOPS Celepar allow remote attackers to inject arbitrary web script or HTML via 1 the codcategoria parameter to categoria.php, 2 the opcao parameter to index.php, and the PATHINFO to 3 categoria.php and 4 index.php...

4.3CVSS5.8AI score0.01509EPSS
Exploits1References5
NVD
NVD
added 2010/03/15 9:30 p.m.23 views

CVE-2009-4714

Cross-site scripting XSS vulnerability in the quiz module for XOOPS Celepar allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to cadastrousuario.php...

4.3CVSS5.7AI score0.0151EPSS
Exploits1References3
Prion
Prion
added 2010/03/15 9:30 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Qas aka Quas module for XOOPS Celepar allow remote attackers to inject arbitrary web script or HTML via 1 the codcategoria parameter to categoria.php, 2 the opcao parameter to index.php, and the PATHINFO to 3 categoria.php and 4 index.php...

4.3CVSS6.1AI score0.01509EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2010/03/15 9:30 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the quiz module for XOOPS Celepar allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to cadastrousuario.php...

4.3CVSS6.2AI score0.0151EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2010/03/15 9:30 p.m.18 views

CVE-2009-4698

Multiple SQL injection vulnerabilities in the Qas aka Quas module for XOOPS Celepar allow remote attackers to execute arbitrary SQL commands via the codigo parameter to 1 aviso.php and 2 imprimir.php, and the 3 codcategoria parameter to categoria.php...

7.5CVSS8.5AI score0.01707EPSS
Exploits1References8
Prion
Prion
added 2010/03/15 9:30 p.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in the Qas aka Quas module for XOOPS Celepar allow remote attackers to execute arbitrary SQL commands via the codigo parameter to 1 aviso.php and 2 imprimir.php, and the 3 codcategoria parameter to categoria.php...

7.5CVSS9.2AI score0.01707EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2010/03/15 9:0 p.m.46 views

CVE-2009-4713

CVE-2009-4713 affects the XOOPS Celepar Qas (Quas) module. It has multiple XSS vulnerabilities in categoria.php (cod_categoria), index.php (opcao), and via PATH_INFO to categoria.php and index.php, enabling remote script/HTML injection. The NVD entry lists a base score of 4.3 (Medium) with AV:N/A...

4.3CVSS5.9AI score0.01509EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2010/03/15 9:0 p.m.25 views

CVE-2009-4713

Multiple cross-site scripting XSS vulnerabilities in the Qas aka Quas module for XOOPS Celepar allow remote attackers to inject arbitrary web script or HTML via 1 the codcategoria parameter to categoria.php, 2 the opcao parameter to index.php, and the PATHINFO to 3 categoria.php and 4 index.php...

5.8AI score0.01509EPSS
Exploits1References5
Cvelist
Cvelist
added 2010/03/15 9:0 p.m.21 views

CVE-2009-4698

Multiple SQL injection vulnerabilities in the Qas aka Quas module for XOOPS Celepar allow remote attackers to execute arbitrary SQL commands via the codigo parameter to 1 aviso.php and 2 imprimir.php, and the 3 codcategoria parameter to categoria.php...

8.5AI score0.01707EPSS
Exploits1References8
CVE
CVE
added 2010/03/15 9:0 p.m.45 views

CVE-2009-4714

CVE-2009-4714 affects the XOOPS Celepar quiz module. The vulnerability is a Cross-site Scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via PATH_INFO to cadastro_usuario.php. The available connected sources corroborate an XSS impact, but no explicit remedia...

4.3CVSS5.8AI score0.0151EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2010/03/15 9:0 p.m.46 views

CVE-2009-4698

CVE-2009-4698 affects the Xoops Celepar Qas/Quas module for XOOPS Celepar. The NVD/OpenVAS entries describe multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via the parameters: codigo in aviso.php and imprimir.php, and cod_categoria in categoria...

7.5CVSS8.8AI score0.01707EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2010/03/15 9:0 p.m.34 views

CVE-2009-4714

Cross-site scripting XSS vulnerability in the quiz module for XOOPS Celepar allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to cadastrousuario.php...

5.7AI score0.0151EPSS
Exploits1References3
securityvulns
securityvulns
added 2010/02/16 12:0 a.m.67 views

Multiple Stored XSS in XOOPS 2.4.4 Admin Section

Greetz to all Darkc0de ,AI,ICW, AH Memebers Shoutz to r45c4l,j4ckh4x0r,silic0n,smith,baltazar,d3hydr8,FB1H2S, lowlz,Eberly,Sumit, Author: Beenu Arora Home : www.BeenuArora.com Email : [email protected] Share the c0de! Exploit: Multiple Stored XSS in XOOPS 2.4.4 Admin Section AppSite:...

0.9AI score
Exploits0
seebug.org
seebug.org
added 2010/01/21 12:0 a.m.14 views

XOOPS任意文件删除和HTTP头注入漏洞

No description provided by source...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2010/01/20 12:0 a.m.14 views

XOOPS Arbitrary File Deletion and HTTP Header Injection Vulnerabilities

XOOPS is prone to an HTTP-header-injection vulnerability and an arbitrary-file- deletion vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.3AI score
Exploits0References4
securityvulns
securityvulns
added 2010/01/19 12:0 a.m.52 views

Multiple Vulnerabilities in XOOPS 2.4.3 and earlier

======================================================================== = CodeScan Advisory, codescan.com [email protected] = = Multiple vulnerablities in Xoops 2.4.3 = = Vendor Website: = http://www.xoops.org = = Affected Version: = Xoops 2.4.3 And Earlier = = Researched By = CodeScan Lab...

Exploits0
NVD
NVD
added 2010/01/06 10:0 p.m.21 views

CVE-2009-4582

SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.00961EPSS
Exploits1References3
Prion
Prion
added 2010/01/06 10:0 p.m.15 views

Sql injection

SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.00961EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2010/01/06 9:33 p.m.27 views

CVE-2009-4582

SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.00961EPSS
Exploits1References3
Rows per page
Query Builder