Lucene search
K

248 matches found

NVD
NVD
added 2009/09/30 3:30 p.m.23 views

CVE-2009-3499

SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter...

7.5CVSS8.4AI score0.00961EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/09/30 3:0 p.m.21 views

CVE-2009-3499

SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter...

8.4AI score0.00961EPSS
Exploits1References3
NVD
NVD
added 2009/09/15 9:30 p.m.15 views

CVE-2009-3187

Cross-site scripting XSS vulnerability in gamelist.php in Stand Alone Arcade 1.1 allows remote attackers to inject arbitrary web script or HTML via the cat parameter...

4.3CVSS5.7AI score0.01498EPSS
Exploits1References3
NVD
NVD
added 2009/09/15 9:30 p.m.22 views

CVE-2009-3190

Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...

7.5CVSS8.5AI score0.00928EPSS
Exploits0References2
Prion
Prion
added 2009/09/15 9:30 p.m.13 views

Sql injection

Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...

7.5CVSS9.3AI score0.00928EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2009/09/15 9:30 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in gamelist.php in Stand Alone Arcade 1.1 allows remote attackers to inject arbitrary web script or HTML via the cat parameter...

4.3CVSS6.1AI score0.01498EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/09/15 9:30 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to inject arbitrary web script or HTML via the cat parameter to 1 rss.php and 2 opml.php...

4.3CVSS6.1AI score0.01216EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2009/09/15 9:0 p.m.26 views

CVE-2009-3190

Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...

8.5AI score0.00928EPSS
Exploits0References2
Prion
Prion
added 2009/08/20 5:30 p.m.19 views

Sql injection

SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate URA 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter...

7.5CVSS9.1AI score0.00923EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2009/08/17 4:30 p.m.21 views

CVE-2009-2780

Multiple cross-site scripting XSS vulnerabilities in 68 Classifieds 4.1 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to category.php, view parameter to 2 login.php and 3 viewlisting.php, page parameter to 4 searchresults.php and 5 toplistings.php, and 6...

4.3CVSS5.8AI score0.0224EPSS
Exploits1References9
Prion
Prion
added 2009/05/07 5:30 p.m.18 views

Sql injection

SQL injection vulnerability in directory.php in Scripts For Sites SFS EZ Pub Site allows remote attackers to execute arbitrary SQL commands via the cat parameter...

7.5CVSS9.1AI score0.01003EPSS
Exploits1References5
Prion
Prion
added 2009/05/01 5:30 p.m.12 views

Sql injection

SQL injection vulnerability in viewfaqs.php in Scripts for Sites SFS EZ Auction allows remote attackers to execute arbitrary SQL commands via the cat parameter...

7.5CVSS9.1AI score0.01003EPSS
Exploits1References5
Prion
Prion
added 2009/03/13 10:30 a.m.13 views

Sql injection

SQL injection vulnerability in detail.php in MountainGrafix easyLink 1.1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter in a show action...

7.5CVSS9.1AI score0.00999EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2009/02/05 1:30 a.m.14 views

CVE-2008-6064

Multiple SQL injection vulnerabilities in DomPHP 0.81 allow remote attackers to execute arbitrary SQL commands via the cat parameter to agenda/index.php, and unspecified other vectors...

7.5CVSS8.5AI score0.00931EPSS
Exploits1References2
Prion
Prion
added 2009/02/05 1:30 a.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in DomPHP 0.81 allow remote attackers to execute arbitrary SQL commands via the cat parameter to agenda/index.php, and unspecified other vectors...

7.5CVSS9.3AI score0.00931EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2009/01/29 12:0 a.m.6 views

PT-2009-2988 · Ninja · Ninja Blog

Name of the Vulnerable Software and Affected Versions: Ninja Blog version 4.8 Description: The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the entries/index.php file when magic quotes gpc is disabled. This is achieved by using a .. dot dot i...

4.3CVSS6.8AI score0.02562EPSS
Exploits1References6
Cvelist
Cvelist
added 2009/01/27 8:0 p.m.18 views

CVE-2009-0299

SQL injection vulnerability in index.php in Groone GLinks 2.1 allows remote attackers to execute arbitrary SQL commands via the cat parameter...

8.4AI score0.01033EPSS
Exploits1References5
NVD
NVD
added 2009/01/21 6:30 p.m.24 views

CVE-2008-5923

SQL injection vulnerability in default.asp in ASP-DEv XM Events Diary allows remote attackers to execute arbitrary SQL commands the cat parameter...

7.5CVSS8.3AI score0.00973EPSS
Exploits1References3
Prion
Prion
added 2009/01/21 6:30 p.m.12 views

Sql injection

SQL injection vulnerability in diaryviewC.asp in ASP-DEv XM Events Diary allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS8.7AI score0.01001EPSS
Exploits0References2
Cvelist
Cvelist
added 2009/01/21 6:0 p.m.31 views

CVE-2008-5924

SQL injection vulnerability in diaryviewC.asp in ASP-DEv XM Events Diary allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

8AI score0.01001EPSS
Exploits0References2
Rows per page
Query Builder