CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote attackers to execute arbitrary PHP code via a URL in the rowptemtemplate parameter to 1 showcasesearch.php and 2 showcase2search.php...

7.5CVSS7.7AI score0.02164EPSS

Exploits1References2

NVD•added 2010/01/21 8:30 p.m.•9 views

CVE-2010-0366

Multiple unrestricted file upload vulnerabilities in 1 register.php and 2 addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a...

6.8CVSS7.8AI score0.04023EPSS

Exploits1References4

Prion•added 2010/01/21 8:30 p.m.•9 views

Unrestricted file upload

6.8CVSS8.4AI score0.04023EPSS

Exploits1References4Affected Software1

NVD•added 2010/01/21 8:30 p.m.•6 views

CVE-2010-0365

Cross-site scripting XSS vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter...

4.3CVSS5.7AI score0.02646EPSS

Exploits1References4

Prion•added 2010/01/21 8:30 p.m.•7 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter...

4.3CVSS6.2AI score0.02646EPSS

Exploits1References4Affected Software1

Prion•added 2010/01/21 8:30 p.m.•10 views

Remote file inclusion

7.5CVSS8.2AI score0.02164EPSS

Exploits1References2Affected Software1

CVE•added 2010/01/21 8:0 p.m.•31 views

CVE-2010-0365

CVE-2010-0365 concerns a stored/reflected cross-site scripting (XSS) vulnerability in the BitScripts Bits Video Script, specifically affecting the search.php endpoint in versions 2.04 and 2.05 Gold Beta. The underlying issue is that user-supplied input in the order parameter can be interpreted as...

4.3CVSS5.9AI score0.02646EPSS

Exploits1References4Affected Software1

Cvelist•added 2010/01/21 8:0 p.m.•16 views

CVE-2010-0367

7.7AI score0.02164EPSS

Exploits1References2

CVE•added 2010/01/21 8:0 p.m.•39 views

CVE-2010-0367

CVE-2010-0367 describes multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta (and possibly 2.04). The issue is exploitable via a crafted URL that injects a value into the rowptem[template] parameter sent to showcasesearch.php and showcase2search.php, a...

7.5CVSS7.9AI score0.02164EPSS

Exploits1References2Affected Software1

Cvelist•added 2010/01/21 8:0 p.m.•14 views

CVE-2010-0366

7.8AI score0.04023EPSS

Exploits1References4

Cvelist•added 2010/01/21 8:0 p.m.•9 views

CVE-2010-0365

Cross-site scripting XSS vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter...

5.7AI score0.02646EPSS

Exploits1References4

CVE•added 2010/01/21 8:0 p.m.•31 views

CVE-2010-0366

CVE-2010-0366 affects BitScripts Bits Video Script (versions 2.04 and 2.05 Gold Beta). The vulnerability lies in two upload components, namely register.php and addvideo.php , where an unrestricted file upload can let an attacker place an executable file in the server and access it via a direct re...

6.8CVSS8AI score0.04023EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by