Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-3494

Malware in sbrugna...

7.5CVSS6.4AI score0.01635EPSS
Exploits0References5
CVE
CVE
added 2006/06/05 5:0 p.m.46 views

CVE-2006-2809

CVE-2006-2809 corresponds to multiple XSS vulnerabilities in ar-blog 5.2, affecting index.php via parameters (count, and possibly next, Year_the_news, mo). Root cause is improper handling/validation of user-supplied input leading to script/HTML injection. Affected component is ar-blog 5.2, index....

6.8CVSS5.8AI score0.01295EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2006/04/20 10:0 a.m.24 views

CVE-2006-1893

Cross-site scripting XSS vulnerability in print.php in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

5.7AI score0.01953EPSS
Exploits1References4
CVE
CVE
added 2006/04/20 10:0 a.m.38 views

CVE-2006-1893

CVE-2006-1893 describes a cross-site scripting (XSS) vulnerability in the print.php component of ar-blog 5.2, exploitable via the id parameter to inject arbitrary script/HTML. The vulnerability is documented across multiple sources (NVD, CVE List, PRION, etc.), with the impact described as enabli...

6.8CVSS5.7AI score0.01953EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2006/01/21 12:3 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 month or 2 year parameter to index.php...

4.3CVSS5.9AI score0.01164EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2006/01/21 12:0 a.m.44 views

CVE-2006-0333

CVE-2006-0333: An XSS vulnerability in ar-blog 5.2 affects index.php, exploitable via the month or year parameters. Related entry CVE-2006-2809 expands the risk to additional parameters (count, next, Year_the_news, mo); note that the month/year vectors are already covered by CVE-2006-0333. No exp...

4.3CVSS5.6AI score0.01164EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2005/11/04 12:2 a.m.17 views

CVE-2005-3494

Cross-site scripting XSS vulnerability in Ar-blog 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog comment...

4.3CVSS5.7AI score0.01255EPSS
Exploits1References4
Cvelist
Cvelist
added 2005/11/04 12:0 a.m.17 views

CVE-2005-3494

Cross-site scripting XSS vulnerability in Ar-blog 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog comment...

5.7AI score0.01255EPSS
Exploits1References4
CVE
CVE
added 2005/11/04 12:0 a.m.42 views

CVE-2005-3494

CVE-2005-3494 describes a cross-site scripting (XSS) flaw in Ar-blog versions 5.2 and earlier. The vulnerability allows a remote attacker to inject arbitrary web script or HTML through a blog comment, potentially compromising user sessions or displaying malicious content. The connected documents ...

4.3CVSS5.9AI score0.01255EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder