Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-3296

Malware in sbrugna...

6.8CVSS6.4AI score0.01967EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3293

Malware in sbrugna...

4.3CVSS6.4AI score0.03592EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-3295

Malware in sbrugna...

7.5CVSS6.3AI score0.01042EPSS
Exploits0References6
Prion
Prion
added 2008/07/25 4:41 p.m.12 views

Remote file inclusion

PHP remote file inclusion vulnerability in cuenta/cuerpo.php in C. Desseno YouTube Blog ytb 0.1, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basearchivo parameter...

6.8CVSS8.1AI score0.01967EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2008/07/25 4:41 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in mensaje.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to inject arbitrary web script or HTML via the m parameter...

4.3CVSS6.1AI score0.03592EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2008/07/25 4:41 p.m.18 views

Sql injection

SQL injection vulnerability in info.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3307. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

7.5CVSS8.4AI score0.01042EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2008/07/25 4:41 p.m.15 views

CVE-2008-3307

SQL injection vulnerability in todos.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3306...

7.5CVSS8.2AI score0.01042EPSS
Exploits0References5
Prion
Prion
added 2008/07/25 4:41 p.m.16 views

Sql injection

SQL injection vulnerability in todos.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3306...

7.5CVSS8.7AI score0.01042EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/07/25 4:41 p.m.15 views

CVE-2008-3305

Cross-site scripting XSS vulnerability in mensaje.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to inject arbitrary web script or HTML via the m parameter...

4.3CVSS5.7AI score0.03592EPSS
Exploits1References5
NVD
NVD
added 2008/07/25 4:41 p.m.11 views

CVE-2008-3308

PHP remote file inclusion vulnerability in cuenta/cuerpo.php in C. Desseno YouTube Blog ytb 0.1, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basearchivo parameter...

6.8CVSS7.5AI score0.01967EPSS
Exploits1References5
NVD
NVD
added 2008/07/25 4:41 p.m.16 views

CVE-2008-3306

SQL injection vulnerability in info.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3307. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

7.5CVSS7.9AI score0.00905EPSS
Exploits0References2
CVE
CVE
added 2008/07/25 4:0 p.m.42 views

CVE-2008-3307

CVE-2008-3307 is a SQL injection vulnerability affecting the C. Desseno YouTube Blog (ytb) 0.1 in the todos.php module. The vulnerability is triggered via the id parameter, allowing remote attackers to execute arbitrary SQL commands. This is a distinct vector from CVE-2008-3306. Connected sources...

7.5CVSS8.2AI score0.01042EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2008/07/25 4:0 p.m.21 views

CVE-2008-3308

PHP remote file inclusion vulnerability in cuenta/cuerpo.php in C. Desseno YouTube Blog ytb 0.1, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basearchivo parameter...

7.5AI score0.01967EPSS
Exploits1References5
Cvelist
Cvelist
added 2008/07/25 4:0 p.m.17 views

CVE-2008-3305

Cross-site scripting XSS vulnerability in mensaje.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to inject arbitrary web script or HTML via the m parameter...

5.7AI score0.03592EPSS
Exploits1References5
Cvelist
Cvelist
added 2008/07/25 4:0 p.m.20 views

CVE-2008-3307

SQL injection vulnerability in todos.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3306...

8.2AI score0.01042EPSS
Exploits0References5
CVE
CVE
added 2008/07/25 4:0 p.m.44 views

CVE-2008-3306

CVE-2008-3306 targets C. Desseno YouTube Blog (ytb) 0.1. The vulnerability is a SQL injection in info.php that allows remote attackers to execute arbitrary SQL commands via the id parameter (a vector distinct from CVE-2008-3307). Associated records indicate a second, related entry (CVE-2008-3307)...

7.5CVSS7.9AI score0.00905EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2008/07/25 4:0 p.m.18 views

CVE-2008-3306

SQL injection vulnerability in info.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3307. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

7.9AI score0.00905EPSS
Exploits0References2
CVE
CVE
added 2008/07/25 4:0 p.m.44 views

CVE-2008-3308

CVE-2008-3308 : PHP remote file inclusion in cuenta/cuerpo.php of C. Desseno YouTube Blog (ytb) 0.1. When register_globals is enabled, an attacker can provide a URL in the base_archivo parameter to execute arbitrary PHP code on the server. Affected scenario: vulnerable 0.1 with register_globals. ...

6.8CVSS7.5AI score0.01967EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2008/07/25 4:0 p.m.40 views

CVE-2008-3305

The CVE-2008-3305 entry describes a Cross-site Scripting (XSS) vulnerability in the C. Desseno YouTube Blog (ytb) 0.1 platform, specifically in the file mensaje.php. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the m parameter. Concrete details across conne...

4.3CVSS5.7AI score0.03592EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder