CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in insertorder.cfm in QuickEStore 8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the CFTOKEN parameter, a different vector than CVE-2006-2053...

7.5CVSS8.7AI score0.01148EPSS

Exploits0References5Affected Software1

Cvelist•added 2007/07/21 12:0 a.m.•16 views

CVE-2007-3933

8.2AI score0.00716EPSS

Exploits0References5

Prion•added 2006/05/16 10:2 a.m.•11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in FlexChat 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 username and 2 CFTOKEN parameter in a index.cfm and 3 CFTOKEN and 4 CFID parameter in b chat.cfm...

5.8CVSS6.1AI score0.00527EPSS

Exploits0References7Affected Software1

Cvelist•added 2006/05/16 10:0 a.m.•16 views

CVE-2006-2415

5.8AI score0.00527EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by