Lucene search
K

5 matches found

Cvelist
Cvelist
added 2023/11/20 12:0 a.m.42 views

CVE-2023-38881

A reflected cross-site scripting XSS vulnerability in the Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into any of the 'calendarid', 'schooldate', 'month' or 'year'...

6.2AI score0.00623EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

more.groupware <= 0.74 (new_calendarid) Remote SQL Injection Exploit

No description provided by source. ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die oo error - cannot load curl extension!; function exploitheader echo...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2006/08/17 9:0 p.m.20 views

CVE-2006-4206

Cross-site scripting XSS vulnerability in calendar.asp in ASPPlayground.NET Forum Advanced Edition 2.4.5 Unicode, and possibly other versions before October 15, 2006, allows remote attackers to inject arbitrary web script or HTML via the calendarID parameter...

5.8AI score0.02507EPSS
Exploits0References6
EUVD
EUVD
added 2006/08/17 9:0 p.m.3 views

EUVD-2006-4196

Cross-site scripting XSS vulnerability in calendar.asp in ASPPlayground.NET Forum Advanced Edition 2.4.5 Unicode, and possibly other versions before October 15, 2006, allows remote attackers to inject arbitrary web script or HTML via the calendarID parameter...

4.3CVSS5.8AI score0.02507EPSS
Exploits0References6
Cvelist
Cvelist
added 2005/09/21 4:0 a.m.20 views

CVE-2005-3024

Multiple SQL injection vulnerabilities in vBulletin 3.0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 announcement parameter to announcement.php, the 2 threadforumid or 3 criteria parameters to thread.php, 4 userid parameter to user.php, the 5...

8.5AI score0.01224EPSS
Exploits1References2
Rows per page
Query Builder