Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2024/04/03 12:0 a.m.14 views

CVE-2024-3222 SourceCodester PHP Task Management System admin-password-change.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester PHP Task Management System 1.0. This issue affects some unknown processing of the file admin-password-change.php. The manipulation of the argument adminid leads to sql injection. The attack may be initiated...

6.5CVSS7.5AI score0.00131EPSS
Exploits1References4
Cvelist
Cvelistadded 2024/04/03 12:0 a.m.16 views

CVE-2024-3222 SourceCodester PHP Task Management System admin-password-change.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester PHP Task Management System 1.0. This issue affects some unknown processing of the file admin-password-change.php. The manipulation of the argument adminid leads to sql injection. The attack may be initiated...

6.5CVSS7.1AI score0.00131EPSS
Exploits1References4
NVD
NVDadded 2009/04/08 10:30 a.m.9 views

CVE-2008-6665

change.php in Ananta CMS 1.0b5, with magicquotesgpc disabled, allows remote attackers to gain administrator privileges via a crafted email parameter, possibly related to code injection...

6.8CVSS7.3AI score0.0407EPSS
Exploits1References3
Cvelist
Cvelistadded 2009/04/08 10:0 a.m.16 views

CVE-2008-6665

change.php in Ananta CMS 1.0b5, with magicquotesgpc disabled, allows remote attackers to gain administrator privileges via a crafted email parameter, possibly related to code injection...

7.3AI score0.0407EPSS
Exploits1References3
CVE
CVEadded 2009/04/08 10:0 a.m.35 views

CVE-2008-6665

The CVE-2008-6665 entry concerns Ananta CMS 1.0b5 where the script change.php is affected when magic_quotes_gpc is disabled. The vulnerability allows remote attackers to gain administrator privileges by supplying a crafted email parameter, with the root cause described as potentially related to c...

6.8CVSS7.6AI score0.0407EPSS
Exploits1References3Affected Software1
exploitpack
exploitpackadded 2008/06/15 12:0 a.m.13 views

Anata CMS 1.0b5 - change.php Arbitrary Add Admin

Anata CMS 1.0b5 - change.php Arbitrary Add Admin =============================================== Anata CMS 1.0b5 Arbitrary Add-Admin Exploit =============================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

0.1AI score
Exploits0
Cvelist
Cvelistadded 2006/12/15 7:0 p.m.17 views

CVE-2006-6580

admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other impacts. NOTE: the provenance of this information is unknown; the details are obtained solely from...

6.6AI score0.00636EPSS
Exploits0References2
Cvelist
Cvelistadded 2006/12/14 1:0 a.m.12 views

CVE-2006-6518

Multiple cross-site scripting XSS vulnerabilities in ProNews 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 pseudo, 2 email, 3 date, 4 sujet, 5 message, 6 site, and 7 lien parameters to a admin/change.php, and the 8 aa parameter to b lire-avis.php...

5.8AI score0.01428EPSS
Exploits1References3
Rows per page
Query Builder