Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-0687

Malware in sbrugna...

7.5CVSS6.4AI score0.00928EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-5120

Malware in sbrugna...

7.5CVSS6.4AI score0.02425EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-0686

Malware in sbrugna...

4.3CVSS6.4AI score0.01216EPSS
Exploits0References3
Prion
Prion
added 2008/02/12 1:0 a.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in A-Blog 2 allows remote attackers to inject arbitrary web script or HTML via the words parameter...

4.3CVSS6.1AI score0.01216EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2008/02/12 1:0 a.m.16 views

CVE-2008-0677

SQL injection vulnerability in blog.php in A-Blog 2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a news action...

7.5CVSS8.3AI score0.00928EPSS
Exploits0References2
Prion
Prion
added 2008/02/12 1:0 a.m.14 views

Sql injection

SQL injection vulnerability in blog.php in A-Blog 2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a news action...

7.5CVSS9AI score0.00928EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2008/02/12 1:0 a.m.17 views

CVE-2008-0676

Cross-site scripting XSS vulnerability in search.php in A-Blog 2 allows remote attackers to inject arbitrary web script or HTML via the words parameter...

4.3CVSS5.7AI score0.01216EPSS
Exploits0References2
Cvelist
Cvelist
added 2008/02/12 12:0 a.m.24 views

CVE-2008-0676

Cross-site scripting XSS vulnerability in search.php in A-Blog 2 allows remote attackers to inject arbitrary web script or HTML via the words parameter...

5.7AI score0.01216EPSS
Exploits0References2
CVE
CVE
added 2008/02/12 12:0 a.m.50 views

CVE-2008-0676

CVE-2008-0676 describes a Cross-site Scripting (XSS) vulnerability in the search.php component of A-Blog 2. The flaw allows remote attackers to inject arbitrary web script or HTML via the words parameter, enabling potential credential theft or session manipulation through crafted search queries. ...

4.3CVSS5.7AI score0.01216EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2008/02/12 12:0 a.m.52 views

CVE-2008-0677

CVE-2008-0677 concerns an SQL injection in blog.php of A-Blog 2, triggered via the id parameter in a news action. The underlying issue is improper input handling in a PHP-based blog component, allowing an attacker to craft the id value to modify the SQL query executed by the application. Impact, ...

7.5CVSS8.3AI score0.00928EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2006/10/03 4:3 a.m.17 views

CVE-2006-5135

Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the 1 openbox, 2 middlebox, and 3 closebox parameters in a sources/myaccount.php; the 4 navigationend parameter in b navigation/search.php and c navigation/donation.php...

7.5CVSS7.5AI score0.02425EPSS
Exploits1References3
Cvelist
Cvelist
added 2006/10/02 8:0 p.m.25 views

CVE-2006-5135

Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the 1 openbox, 2 middlebox, and 3 closebox parameters in a sources/myaccount.php; the 4 navigationend parameter in b navigation/search.php and c navigation/donation.php...

7.5AI score0.02425EPSS
Exploits1References3
CVE
CVE
added 2006/10/02 8:0 p.m.62 views

CVE-2006-5135

CVE-2006-5135 describes multiple PHP remote file inclusion vulnerabilities in A-Blog 2. An attacker can cause arbitrary PHP code execution by supplying a URL in parameters such as navigation_start, navigation_middle, and open_box/middle_box/close_box in sources/myaccount.php, navigation_end in na...

7.5CVSS7.6AI score0.02425EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2006/09/29 8:0 p.m.3 views

EUVD-2006-5077

PHP remote file inclusion vulnerability in navigation/menu.php in A-Blog 2 allows remote attackers to execute arbitrary PHP code via a URL in the navigationstart parameter...

7.5CVSS7.4AI score0.03709EPSS
Exploits0References6
CVE
CVE
added 2006/09/29 8:0 p.m.57 views

CVE-2006-5092

CVE-2006-5092 and related CVEs describe PHP remote file inclusion (RFI) vulnerabilities in A-Blog 2. CVE-2006-5092 affects navigation/menu.php, allowing an attacker to trigger code execution by supplying a URL in the navigation_start parameter. CVE-2006-5135 expands to multiple RFI vectors across...

7.5CVSS7.5AI score0.03709EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder