CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2008/12/05 1:30 a.m.•9 views

Sql injection

SQL injection vulnerability in lyrics.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.00436EPSS

NVD•added 2008/12/05 1:30 a.m.•9 views

CVE-2008-5337

SQL injection vulnerability in lyrics.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.00436EPSS

NVD•added 2008/12/05 1:30 a.m.•9 views

CVE-2008-5338

Cross-site scripting XSS vulnerability in info.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

4.3CVSS5.7AI score0.03288EPSS

Prion•added 2008/12/05 1:30 a.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in info.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

4.3CVSS6.1AI score0.03288EPSS

Cvelist•added 2008/12/05 1:0 a.m.•14 views

CVE-2008-5338

Cross-site scripting XSS vulnerability in info.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

5.7AI score0.03288EPSS

CVE•added 2008/12/05 1:0 a.m.•39 views

CVE-2008-5338

CVE-2008-5338 is an XSS vulnerability in Bandwebsite (Bandsite portal system) 1.5, exploitable via info.php by passing a crafted section parameter to inject arbitrary script/HTML. The affected component is info.php; root cause is reflected XSS in the section parameter. Reported impact per sources...

4.3CVSS5.7AI score0.03288EPSS

Cvelist•added 2008/12/05 1:0 a.m.•17 views

CVE-2008-5337

SQL injection vulnerability in lyrics.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.00436EPSS

CVE•added 2008/12/05 1:0 a.m.•39 views

CVE-2008-5337

CVE-2008-5337 is a SQL injection in Bandwebsite (Bandsite portal system) 1.5, via lyrics.php id parameter. The vulnerability arises from improper handling of the id input, allowing remote execution of arbitrary SQL commands. Impact is described as partial confidentiality/integrity/availability wi...

7.5CVSS8.4AI score0.00436EPSS

Packet Storm•added 2008/11/25 12:0 a.m.•21 views

bandwebsite-sqlxss.txt

Bandwebsite Version 1.5 Sql & XSS Multiple Remote Vuln. download: http://membres.lycos.fr/fluxx/bandwebsite.php ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 24.11.2008 Home: www.z0rlu.blogspot.com Kucuk Bir Rica: Lutfen DemolarI...

7.4AI score

exploitpack•added 2008/11/24 12:0 a.m.•15 views

Bandwebsite 1.5 - SQL Injection Cross-Site Scripting

Bandwebsite 1.5 - SQL Injection Cross-Site Scripting Bandwebsite Version 1.5 Sql & XSS Multiple Remote Vuln. download: http://membres.lycos.fr/fluxx/bandwebsite.php ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 24.11.2008 Home:...

0.2AI score

seebug.org•added 2008/11/24 12:0 a.m.•17 views

Bandwebsite 1.5 (SQL/XSS) Multiple Remote Vulnerabilities

7.1AI score

Exploit DB•added 2008/11/24 12:0 a.m.•34 views

Bandwebsite 1.5 - SQL Injection / Cross-Site Scripting

7.4AI score

0day.today•added 2008/11/24 12:0 a.m.•14 views

Bandwebsite 1.5 (SQL/XSS) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= Bandwebsite 1.5 SQL/XSS Multiple Remote Vulnerabilities ========================================================= Bandwebsite Version 1.5 Sql & XSS Multiple Remote Vuln. download:...

7.1AI score