CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

48 matches found

NVD•added 2008/01/17 10:0 p.m.•9 views

CVE-2008-0336

Multiple cross-site request forgery CSRF vulnerabilities in BugTracker.NET before 2.7.2 allow remote attackers to delete arbitrary bugs and perform other administrative tasks via unspecified vectors, possibly related to delete.aspx pages, and massedit.aspx, subscribe.aspx, flag.aspx, and...

4.3CVSS7.4AI score0.0053EPSS

Exploits0References4

CVE•added 2008/01/17 9:7 p.m.•42 views

CVE-2008-0335

BugTracker.NET contains a cross-site scripting (XSS) vulnerability (CVE-2008-0335) affecting versions before 2.7.2. The issue allows remote attackers to inject arbitrary web script or HTML via an arbitrary custom text field. The public documents confirm the vulnerability exists and describe the a...

4.3CVSS5.7AI score0.01065EPSS

Exploits0References5Affected Software1

CVE•added 2008/01/17 9:7 p.m.•38 views

CVE-2008-0336

BugTracker.NET is affected by CSRF in versions before 2.7.2. The vulnerability allows remote attackers to delete arbitrary bugs and perform other administrative tasks via unspecified vectors, with likely references to delete_*.aspx pages and related admin pages (massedit.aspx, subscribe.aspx, fla...

4.3CVSS7.5AI score0.0053EPSS

Exploits0References4Affected Software1

Cvelist•added 2008/01/17 9:7 p.m.•14 views

CVE-2008-0335

Cross-site scripting XSS vulnerability in BugTracker.NET before 2.7.2 allows remote attackers to inject arbitrary web script or HTML via an arbitrary custom text field...

5.7AI score0.01065EPSS

Exploits0References5

Cvelist•added 2008/01/17 9:7 p.m.•14 views

CVE-2008-0336

7.4AI score0.0053EPSS

Exploits0References4

NVD•added 2005/05/02 4:0 a.m.•9 views

CVE-2005-0920

Multiple SQL injection vulnerabilities in Bugtracker.NET 2.0.1 allow remote attackers to execute arbitrary SQL commands via unknown vectors...

7.5CVSS8.5AI score0.01111EPSS

Exploits0References2

Cvelist•added 2005/03/29 5:0 a.m.•15 views

CVE-2005-0920

Multiple SQL injection vulnerabilities in Bugtracker.NET 2.0.1 allow remote attackers to execute arbitrary SQL commands via unknown vectors...

8.5AI score0.01111EPSS

Exploits0References2

CVE•added 2005/03/29 5:0 a.m.•42 views

CVE-2005-0920

CVE-2005-0920: Bugtracker.NET 2.0.1 has multiple SQL injection vulnerabilities allowing remote attackers to execute arbitrary SQL commands via unknown vectors. The NVD metrics show a base score of 7.5 (HIGH) with Network attack vector and no authentication. Impact noted as partial confidentiality...

7.5CVSS8.9AI score0.01111EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by