Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-5070

Malware in sbrugna...

7.5CVSS6.4AI score0.44361EPSS
Exploits2References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2008-1984

Malware in sbrugna...

4.3CVSS6.4AI score0.01436EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1867

Malware in sbrugna...

7.5CVSS6.4AI score0.00967EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2008-1866

Malware in sbrugna...

9CVSS6.4AI score0.05223EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-1868

Malware in sbrugna...

7.5CVSS6.4AI score0.02614EPSS
Exploits0References4
CVE
CVE
added 2008/04/27 9:0 p.m.40 views

CVE-2008-1986

CVE-2008-1986 is a reported XSS vulnerability in Blog Pixel Motion (PixelMotion) affecting the file liste_article.php. The flaw allows remote attackers to inject arbitrary web script or HTML via the jours parameter. The available sources describe the vulnerability and its impact as cross-site scr...

4.3CVSS5.7AI score0.01436EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/04/27 9:0 p.m.20 views

CVE-2008-1986

Cross-site scripting XSS vulnerability in listearticle.php in Blog Pixel Motion aka PixelMotion allows remote attackers to inject arbitrary web script or HTML via the jours parameter...

5.7AI score0.01436EPSS
Exploits1References3
NVD
NVD
added 2008/04/17 7:5 p.m.10 views

CVE-2008-1867

SQL injection vulnerability in Blog Pixel Motion aka Blog PixelMotion allows remote attackers to execute arbitrary SQL commands via the categorie parameter to index.php, possibly related to include/requetesIndex.php...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References4
NVD
NVD
added 2008/04/17 7:5 p.m.16 views

CVE-2008-1868

admin/sauvBase.php in Blog Pixel Motion aka Blog PixelMotion does not require authentication, which allows remote attackers to trigger a database backup dump, and obtain the resulting blogPM.sql file that contains sensitive information...

7.5CVSS6.5AI score0.02614EPSS
Exploits0References3
Prion
Prion
added 2008/04/17 7:5 p.m.16 views

Sql injection

SQL injection vulnerability in Blog Pixel Motion aka Blog PixelMotion allows remote attackers to execute arbitrary SQL commands via the categorie parameter to index.php, possibly related to include/requetesIndex.php...

7.5CVSS9.2AI score0.00967EPSS
Exploits1References4
Prion
Prion
added 2008/04/17 7:5 p.m.10 views

Authentication flaw

admin/sauvBase.php in Blog Pixel Motion aka Blog PixelMotion does not require authentication, which allows remote attackers to trigger a database backup dump, and obtain the resulting blogPM.sql file that contains sensitive information...

7.5CVSS7.1AI score0.02614EPSS
Exploits0References3
Cvelist
Cvelist
added 2008/04/17 5:0 p.m.26 views

CVE-2008-1866

admin/modifconfig.php in Blog Pixel Motion aka PixelMotion does not require admin authentication, which allows remote authenticated users to upload arbitrary PHP scripts in a ZIP archive, which is written to templateZip/ and then automatically extracted under templates/ for execution via a direct...

6.6AI score0.05223EPSS
Exploits1References4
Cvelist
Cvelist
added 2008/04/17 5:0 p.m.19 views

CVE-2008-1868

admin/sauvBase.php in Blog Pixel Motion aka Blog PixelMotion does not require authentication, which allows remote attackers to trigger a database backup dump, and obtain the resulting blogPM.sql file that contains sensitive information...

6.5AI score0.02614EPSS
Exploits0References3
Cvelist
Cvelist
added 2008/04/17 5:0 p.m.20 views

CVE-2008-1867

SQL injection vulnerability in Blog Pixel Motion aka Blog PixelMotion allows remote attackers to execute arbitrary SQL commands via the categorie parameter to index.php, possibly related to include/requetesIndex.php...

8.4AI score0.00967EPSS
Exploits1References4
CVE
CVE
added 2008/04/17 5:0 p.m.41 views

CVE-2008-1868

CVE-2008-1868 affects Blog Pixel Motion (Blog Pixel Motion) via admin/sauvBase.php, where authentication is not required. The underlying issue allows remote attackers to trigger a database backup dump and retrieve the resulting blogPM.sql, which contains sensitive information. The vulnerability e...

7.5CVSS6.5AI score0.02614EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2008/04/17 5:0 p.m.37 views

CVE-2008-1867

CVE-2008-1867 describes a SQL injection vulnerability in Blog Pixel Motion (aka Blog PixelMotion). The issue allows remote attackers to execute arbitrary SQL commands via the categorie parameter to index.php, potentially related to include/requetesIndex.php. The vulnerability affects the affected...

7.5CVSS8.5AI score0.00967EPSS
Exploits1References4Affected Software1
Packet Storm
Packet Storm
added 2008/04/08 12:0 a.m.33 views

blogpixel-sql.txt

Blog Pixel Motion Sql Injection Vulnerability ------------------------------------------------------------------------------------------------- Author : parad0x Home : www.inso.host.sk Script : Blog PixelMotion Download : http://www.pixelmotion.org/zip/blog.zip...

7.4AI score
Exploits0
NVD
NVD
added 2006/09/29 12:7 a.m.12 views

CVE-2006-5085

Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the nomblog parameter, which is injected into include/variables.php...

7.5CVSS7.8AI score0.44361EPSS
Exploits2References6
Cvelist
Cvelist
added 2006/09/29 12:0 a.m.20 views

CVE-2006-5085

Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the nomblog parameter, which is injected into include/variables.php...

7.8AI score0.44361EPSS
Exploits2References6
CVE
CVE
added 2006/09/29 12:0 a.m.44 views

CVE-2006-5086

Blog Pixel Motion 2.1.1 is affected. The vulnerability allows remote attackers to change the admin username and password via a direct request to insere_base.php using modified (1) login and (2) pass parameters. The original researcher claimed SQL injection, but the report notes that this is not S...

6.4CVSS8.2AI score0.01071EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder