Lucene search
K

7 matches found

0day.today
0day.today
added 2012/06/20 12:0 a.m.15 views

Community Portal Script Sql Injection/XSS Vulnerabilties

Exploit for php platform in category web applications Community Portal Script Sql Injection/XSS Vulnerabilties ======================================================================= .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script : http://communityportalscript.com/ .:. Tested On Demo :...

7.1AI score
Exploits0
Prion
Prion
added 2010/06/28 8:30 p.m.16 views

Sql injection

SQL injection vulnerability in user-profile.php in 2daybiz Video Community Portal Script allows remote attackers to execute arbitrary SQL commands via the userid parameter...

7.5CVSS9.1AI score0.00961EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2010/06/28 8:0 p.m.56 views

CVE-2010-2508

CVE-2010-2508 describes a SQL injection in the 2daybiz Video Community Portal Script, specifically in the file user-profile.php, where the userid parameter can be manipulated by an attacker to execute arbitrary SQL commands. The vulnerability is documented across multiple sources (NVD, Red Hat ad...

7.5CVSS8.7AI score0.00961EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2010/06/25 9:30 p.m.18 views

CVE-2010-2458

Cross-site scripting XSS vulnerability in video.php in 2daybiz Video Community Portal Script 1.0 allows remote attackers to inject arbitrary web script or HTML via the videoid parameter...

4.3CVSS5.7AI score0.0172EPSS
Exploits1References6
CVE
CVE
added 2010/06/25 9:0 p.m.63 views

CVE-2010-2458

CVE-2010-2458 is an XSS vulnerability in the 2daybiz Video Community Portal Script 1.0, exploitable via the videoid parameter in video.php. The root cause is unsanitized input leading to arbitrary script execution if an attacker injects HTML/script. Public references describe the vulnerability an...

4.3CVSS5.9AI score0.0172EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2010/06/25 9:0 p.m.23 views

CVE-2010-2459

SQL injection vulnerability in video.php in 2daybiz Video Community Portal Script 1.0 allows remote attackers to execute arbitrary SQL commands via the videoid parameter...

8.4AI score0.00997EPSS
Exploits1References5
CVE
CVE
added 2010/06/25 9:0 p.m.54 views

CVE-2010-2459

CVE-2010-2459 describes an SQL injection in the file video.php of the product 2daybiz Video Community Portal Script 1.0 . The vulnerability is triggered via the videoid parameter, allowing remote attackers to execute arbitrary SQL commands. According to NVD, the CVSS v2 vector is AV:N/AC:L/Au:N/C...

7.5CVSS8.7AI score0.00997EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder