Lucene search
K

7 matches found

NVD
NVD
added 2009/01/21 6:30 p.m.20 views

CVE-2008-5934

SQL injection vulnerability in index.php in CMS ISWEB 3.0 allows remote attackers to execute arbitrary SQL commands via the idsezione parameter...

7.5CVSS8.3AI score0.00973EPSS
Exploits1References4
Prion
Prion
added 2009/01/21 6:30 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in CMS ISWEB 3.0 allow remote attackers to inject arbitrary web script or HTML via 1 the strcerca parameter aka the input field for the cerca action or 2 the idoggetto parameter. NOTE: some of these details are obtained from third par...

4.3CVSS6.1AI score0.01524EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2009/01/21 6:30 p.m.14 views

Sql injection

SQL injection vulnerability in index.php in CMS ISWEB 3.0 allows remote attackers to execute arbitrary SQL commands via the idsezione parameter...

7.5CVSS9.1AI score0.00973EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/01/21 6:0 p.m.21 views

CVE-2008-5934

SQL injection vulnerability in index.php in CMS ISWEB 3.0 allows remote attackers to execute arbitrary SQL commands via the idsezione parameter...

8.3AI score0.00973EPSS
Exploits1References4
CVE
CVE
added 2009/01/21 6:0 p.m.37 views

CVE-2008-5934

CVE-2008-5934 describes a SQL injection vulnerability in the CMS ISWEB 3.0, specifically in the file index.php, where the parameter id_sezione can be manipulated to cause arbitrary SQL commands to be executed by an attacker. The vulnerability is exploitable remotely and can affect the confidentia...

7.5CVSS8.7AI score0.00973EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2009/01/21 6:0 p.m.40 views

CVE-2008-5933

The CVE-2008-5933 entry documents multiple cross-site scripting (XSS) flaws in CMS ISWEB 3.0, specifically in index.php where the strcerca and id_oggetto parameters can be used to inject arbitrary web script or HTML. The vulnerability arises from unsafely handling these inputs, enabling an attack...

4.3CVSS5.9AI score0.01524EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2009/01/21 6:0 p.m.22 views

CVE-2008-5933

Multiple cross-site scripting XSS vulnerabilities in index.php in CMS ISWEB 3.0 allow remote attackers to inject arbitrary web script or HTML via 1 the strcerca parameter aka the input field for the cerca action or 2 the idoggetto parameter. NOTE: some of these details are obtained from third par...

5.8AI score0.01524EPSS
Exploits0References4
Rows per page
Query Builder