Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-3201

Malware in sbrugna...

6.8CVSS6.4AI score0.01975EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2011-0915

Malware in sbrugna...

6.8CVSS6.4AI score0.0194EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-3202

Malware in sbrugna...

6.8CVSS6.4AI score0.0407EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-4775

Malware in sbrugna...

7.5CVSS6.4AI score0.02323EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-1668

Malware in sbrugna...

4.3CVSS6.4AI score0.01679EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-1098

Malware in sbrugna...

5CVSS6.4AI score0.02459EPSS
Exploits1References5
CVE
CVE
added 2012/11/26 11:0 a.m.48 views

CVE-2012-2437

AWCM 2.2 contains an unauthenticated cookie forgery vulnerability in cookie_gen.php. An attacker can forge arbitrary cookies by supplying name and content parameters without authentication, as described in multiple sources (PoC shows requests like /awcm/cookie_gen.php?name=...&content=...). Root ...

5CVSS6.9AI score0.02434EPSS
Exploits3References3Affected Software1
NVD
NVD
added 2011/07/08 10:55 p.m.23 views

CVE-2010-4810

Multiple PHP remote file inclusion vulnerabilities in AR Web Content Manager AWCM 2.1 final allow remote attackers to execute arbitrary PHP code via a URL in the themefile parameter to 1 includes/windowtop.php and 2 header.php, and the 3 langfile parameter to control/common.php...

7.5CVSS7.6AI score0.02323EPSS
Exploits1References3
Cvelist
Cvelist
added 2011/07/08 10:0 p.m.25 views

CVE-2010-4810

Multiple PHP remote file inclusion vulnerabilities in AR Web Content Manager AWCM 2.1 final allow remote attackers to execute arbitrary PHP code via a URL in the themefile parameter to 1 includes/windowtop.php and 2 header.php, and the 3 langfile parameter to control/common.php...

7.6AI score0.02323EPSS
Exploits1References3
CVE
CVE
added 2011/07/08 10:0 p.m.64 views

CVE-2010-4810

CVE-2010-4810 affects AR Web Content Manager (AWCM) with multiple remote file include vulnerabilities. Public details show that AWCM versions around 2.1 final (and up to 2.2 per OpenVAS) are vulnerable to RFI via theme_file parameters to includes/window_top.php and header.php, and lang_file param...

7.5CVSS7.8AI score0.02323EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2011/04/11 12:0 a.m.19 views

AR Web Content Manager (AWCM) 'search.php' Cross Site Scripting Vulnerability

AR Web Content Manager AWCM is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.8AI score0.01679EPSS
Exploits1References4
NVD
NVD
added 2011/04/10 2:51 a.m.13 views

CVE-2011-1668

Cross-site scripting XSS vulnerability in search.php in AR Web Content Manager AWCM 2.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS5.8AI score0.01679EPSS
Exploits1References5
Prion
Prion
added 2011/04/10 2:51 a.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in AR Web Content Manager AWCM 2.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS6.2AI score0.01679EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2011/04/10 1:0 a.m.19 views

CVE-2011-1668

Cross-site scripting XSS vulnerability in search.php in AR Web Content Manager AWCM 2.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the search parameter...

5.8AI score0.01679EPSS
Exploits1References5
securityvulns
securityvulns
added 2011/04/04 12:0 a.m.124 views

AR Web Content Manager (AWCM) Cross-Site scripting Vulnerability

AR Web Content Manager AWCM v2.2 Cross-Site scripting Vulnerability SecPod Technologies www.secpod.com Author: Antu Sanadi SecPod ID: 1012 21/03/2011 Issue Discovered 24/03/2011 Vendor Notified 24/03/2011 Vendor Responded 25/03/2011 Vendor Solution Class: Cross-Site Scripting Severity: Medium...

0.3AI score
Exploits0
NVD
NVD
added 2011/02/07 9:0 p.m.16 views

CVE-2011-0903

Multiple directory traversal vulnerabilities in AR Web Content Manager AWCM 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. dot dot in the 1 awcmtheme or 2 awcmlang cookie to a index.php or b header.php...

6.8CVSS7.1AI score0.0194EPSS
Exploits2References3
Prion
Prion
added 2011/02/07 9:0 p.m.18 views

Directory traversal

Multiple directory traversal vulnerabilities in AR Web Content Manager AWCM 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. dot dot in the 1 awcmtheme or 2 awcmlang cookie to a index.php or b header.php...

6.8CVSS7.6AI score0.0194EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2011/02/07 8:19 p.m.19 views

CVE-2011-0903

Multiple directory traversal vulnerabilities in AR Web Content Manager AWCM 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. dot dot in the 1 awcmtheme or 2 awcmlang cookie to a index.php or b header.php...

7.1AI score0.0194EPSS
Exploits2References3
CVE
CVE
added 2011/02/07 8:19 p.m.45 views

CVE-2011-0903

AR Web Content Manager (AWCM) 2.2 is affected by multiple directory traversal vulnerabilities that allow reading arbitrary files via a .. in the awcm_theme or awcm_lang cookie parameters when accessing index.php or header.php. The DSquare DSquare security entry characterizes this as a Local File ...

6.8CVSS7.3AI score0.0194EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2010/03/23 6:30 p.m.18 views

CVE-2010-1066

AR Web Content Manager AWCM 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for control/dbbackup.php...

5CVSS6.3AI score0.02459EPSS
Exploits1References4
Rows per page
Query Builder