Lucene search
K

31 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-2871

Malware in sbrugna...

6.4CVSS6.4AI score0.02786EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2957

Malware in sbrugna...

4.3CVSS6.4AI score0.0173EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2960

Malware in sbrugna...

7.5CVSS6.4AI score0.02364EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-2958

Malware in sbrugna...

7.5CVSS6.4AI score0.01137EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2008-2959

Malware in sbrugna...

5CVSS6.4AI score0.02832EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

Academic Web Tools CMS <= 1.4.2.8 - Multiple Vulnerabilities

No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: Academic Web Tools CMS Multiple Vulnerabilities Vendor: www.yektaweb.com Vulnerable Version: 1.4.2.8 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory: www.bugreport.ir/?/44 1...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Yektaweb Academic Web Tools CMS 1.4.2.8/1.5.7 Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/33944/info Yektaweb Academic Web Tools CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attacker-supplied HTML and script code would execute in t...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/12/29 12:0 a.m.26 views

Yektaweb CMS Cross Site Scripting

================= IUT-CERT ================= Title: YEKTAWEB CMS XSS Vulnerability Vendor: www.yektaweb.com Dork: Powered by Academic Web Tools AWT - Yektaweb Collection Type: Input.Validation.Vulnerability cross-Site scripting Fix: N/A ================== nsec.ir ================= Description:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/03/02 12:0 a.m.14 views

Yektaweb Academic Web Tools CMS 1.4.2.81.5.7 - Multiple Cross-Site Scripting Vulnerabilities

Yektaweb Academic Web Tools CMS 1.4.2.81.5.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/33944/info Yektaweb Academic Web Tools CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input...

Exploits0
Packet Storm
Packet Storm
added 2009/03/02 12:0 a.m.25 views

Academic Web Tools CMS Cross Site Scripting

============================================ IUT-CERT ============================================ Title: Academic Web Tools CMS Multiple XSS Vendor: www.yektaweb.com Vulnerable Version: 1.5.7 and priors Type: XSS Fix: N/A Dork: AWT YEKTA ============================================ nsec.ir...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/03/02 12:0 a.m.27 views

Yektaweb Academic Web Tools CMS 1.4.2.8/1.5.7 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/33944/info Yektaweb Academic Web Tools CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attacker-supplied HTML and script code would execute in the context of the affected site,...

7.4AI score
Exploits0
NVD
NVD
added 2008/07/02 5:14 p.m.14 views

CVE-2008-2970

Multiple session fixation vulnerabilities in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allow remote attackers to hijack web sessions by setting the PHPSESSID parameter to 1 index.php and 2 login.php in homepg/...

7.5CVSS6.9AI score0.02364EPSS
Exploits0References5
Prion
Prion
added 2008/07/02 5:14 p.m.9 views

Sql injection

SQL injection vulnerability in rating.php in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to execute arbitrary SQL commands via the bookid parameter...

7.5CVSS9.1AI score0.01137EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2008/07/02 5:14 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 query string to login.php and the 2 glbsid parameter to hta/htmlarea.js.php, and allow remote authenticated...

4.3CVSS5.7AI score0.0173EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2008/07/02 5:14 p.m.14 views

CVE-2008-2967

Multiple cross-site scripting XSS vulnerabilities in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 query string to login.php and the 2 glbsid parameter to hta/htmlarea.js.php, and allow remote authenticated...

4.3CVSS5.5AI score0.0173EPSS
Exploits0References6
Prion
Prion
added 2008/07/02 5:14 p.m.14 views

Session fixation

Multiple session fixation vulnerabilities in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allow remote attackers to hijack web sessions by setting the PHPSESSID parameter to 1 index.php and 2 login.php in homepg/...

7.5CVSS7.4AI score0.02364EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/07/02 5:14 p.m.13 views

CVE-2008-2969

Directory traversal vulnerability in download.php in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to read arbitrary files via a .. dot dot in the dfile parameter...

5CVSS6.7AI score0.02832EPSS
Exploits0References5
Prion
Prion
added 2008/07/02 5:14 p.m.10 views

Directory traversal

Directory traversal vulnerability in download.php in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to read arbitrary files via a .. dot dot in the dfile parameter...

5CVSS7.2AI score0.02832EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/07/02 5:14 p.m.13 views

CVE-2008-2968

SQL injection vulnerability in rating.php in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to execute arbitrary SQL commands via the bookid parameter...

7.5CVSS8.4AI score0.01137EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/07/02 5:0 p.m.21 views

CVE-2008-2969

Directory traversal vulnerability in download.php in Academic Web Tools AWT YEKTA 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to read arbitrary files via a .. dot dot in the dfile parameter...

6.7AI score0.02832EPSS
Exploits0References5
Rows per page
Query Builder