Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1341 matches found

0day.today
0day.todayadded 2008/03/06 12:0 a.m.29 views

XOOPS Module Glossario 2.2 (sid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================================================== XOOPS Module Glossario 2.2 sid Remote SQL Injection Vulnerability =================================================================== XOOPS module glossaires SQL Injection...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2008/03/06 12:0 a.m.35 views

XOOPS Module wfdownloads - cid SQL Injection

XOOPS Module wfdownloads - cid SQL Injection XOOPS module wfdownloads SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl: "modules/wfdownloads/viewcat.php?cid" DORK 2 : allinurl: "modules/wfdownloads" EXPLOIT :...

0.7AI score
Exploits0
exploitpack
exploitpackadded 2008/03/06 12:0 a.m.17 views

XOOPS Module Glossario 2.2 - sid SQL Injection

XOOPS Module Glossario 2.2 - sid SQL Injection XOOPS module glossaires SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl: "modules/glossaires" EXPLOIT :...

0.3AI score
Exploits0
Exploit DB
Exploit DBadded 2008/03/06 12:0 a.m.27 views

XOOPS Module wfdownloads - 'cid' SQL Injection

XOOPS module wfdownloads SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl: "modules/wfdownloads/viewcat.php?cid" DORK 2 : allinurl: "modules/wfdownloads" EXPLOIT :...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2008/03/06 12:0 a.m.48 views

XOOPS Module Glossario 2.2 - 'sid' SQL Injection

XOOPS module glossaires SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl: "modules/glossaires" EXPLOIT :...

7.4AI score
Exploits0
0day.today
0day.todayadded 2008/03/06 12:0 a.m.54 views

XOOPS Module wfdownloads (cid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================= XOOPS Module wfdownloads cid Remote SQL Injection Vulnerability ================================================================= XOOPS module wfdownloads SQL Injection DORK...

7.1AI score
Exploits0
Prion
Prionadded 2008/02/28 8:44 p.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...

7.5CVSS9AI score0.01125EPSS
Exploits1References3Affected Software1
NVD
NVDadded 2008/02/28 8:44 p.m.12 views

CVE-2008-1063

Cross-site scripting XSS vulnerability index.php in the XM-Memberstats xmmemberstats module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...

4.3CVSS5.7AI score0.00871EPSS
Exploits1References2
NVD
NVDadded 2008/02/28 8:44 p.m.10 views

CVE-2008-1065

Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...

7.5CVSS8.2AI score0.01125EPSS
Exploits1References3
Prion
Prionadded 2008/02/28 8:44 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability index.php in the XM-Memberstats xmmemberstats module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...

4.3CVSS6.2AI score0.00871EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2008/02/28 8:0 p.m.15 views

CVE-2008-1063

Cross-site scripting XSS vulnerability index.php in the XM-Memberstats xmmemberstats module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...

5.7AI score0.00871EPSS
Exploits1References2
Cvelist
Cvelistadded 2008/02/28 8:0 p.m.14 views

CVE-2008-1064

Cross-site scripting XSS vulnerability in images.php in the Red Mexico RMSOFT Gallery System GS 2.0 module aka rmgs for XOOPS allows remote attackers to inject arbitrary web script or HTML via the q parameter...

5.7AI score0.013EPSS
Exploits1References2
CVE
CVEadded 2008/02/28 8:0 p.m.39 views

CVE-2008-1064

The CVE-2008-1064 entry concerns the Red Mexico RMSOFT Gallery System (GS) 2.0 module (aka rmgs) for XOOPS, specifically in images.php where a Cross-site scripting (XSS) vulnerability exists. The underlying issue is an ability to inject arbitrary web script or HTML via the q parameter, enabling a...

4.3CVSS5.8AI score0.013EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2008/02/28 8:0 p.m.47 views

CVE-2008-1063

CVE-2008-1063 : A cross-site scripting (XSS) vulnerability in the XM-Memberstats module for XOOPS, exploitable via the sortby parameter in index.php. The affected component is the XM-Memberstats module integrated with XOOPS; the underlying cause is unsanitized input in sortby, enabling remote att...

4.3CVSS5.8AI score0.00871EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2008/02/28 8:0 p.m.13 views

CVE-2008-1065

Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...

8.2AI score0.01125EPSS
Exploits1References3
CVE
CVEadded 2008/02/28 8:0 p.m.36 views

CVE-2008-1065

CVE-2008-1065 affects the XM-Memberstats (xmmemberstats) 2.0e module for XOOPS. The vulnerability is a SQL injection in index.php caused by unsafely handled input in the (1) letter and (2) sortby parameters, enabling remote attackers to craft SQL commands. The reports do not provide explicit expl...

7.5CVSS8.3AI score0.01125EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2008/02/25 6:44 p.m.16 views

Sql injection

SQL injection vulnerability in index.php in the Tiny Event tinyevent 1.01 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter in a print action, a different vector than CVE-2007-1811...

6.8CVSS8.7AI score0.01029EPSS
Exploits0References3Affected Software2
Prion
Prionadded 2008/02/25 6:44 p.m.10 views

Sql injection

SQL injection vulnerability in index.php in the Prayer List prayerlist 1.04 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view action...

7.5CVSS9.1AI score0.00961EPSS
Exploits1References3Affected Software1
NVD
NVDadded 2008/02/25 6:44 p.m.24 views

CVE-2008-0937

SQL injection vulnerability in index.php in the Tiny Event tinyevent 1.01 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter in a print action, a different vector than CVE-2007-1811...

6.8CVSS8.2AI score0.00874EPSS
Exploits0References3
NVD
NVDadded 2008/02/25 6:44 p.m.15 views

CVE-2008-0936

SQL injection vulnerability in index.php in the Prayer List prayerlist 1.04 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view action...

7.5CVSS8.3AI score0.00961EPSS
Exploits1References3
Rows per page
Query Builder