CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-1995

Malware in sbrugna...

7.5CVSS6.2AI score0.01217EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-2309

Malware in sbrugna...

6.8CVSS6.4AI score0.01936EPSS

Exploits0References14

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2007-1996

Malware in sbrugna...

6.5CVSS6.4AI score0.05378EPSS

Exploits0References4

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Crea-Book <= 1.0 Admin Access Bypass / DB Disclosure / Code Execution

No description provided by source...

7.1AI score

Exploits0

Prion•added 2007/04/26 9:19 p.m.•18 views

Sql injection

Multiple SQL injection vulnerabilities in Crea-Book 1.0, and possibly earlier, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 pseudo or 2 passe parameter to a configurer.php, b connect.php, c delete.php, d delete2.php, e index.php, f infos.php,...

6.8CVSS8.7AI score0.01936EPSS

Exploits0References13Affected Software1

NVD•added 2007/04/26 9:19 p.m.•13 views

CVE-2007-2314

6.8CVSS8.1AI score0.01936EPSS

Exploits0References13

Cvelist•added 2007/04/26 9:0 p.m.•18 views

CVE-2007-2314

8.1AI score0.01936EPSS

Exploits0References13

CVE•added 2007/04/26 9:0 p.m.•47 views

CVE-2007-2314

CVE-2007-2314 : The provided documents describe multiple SQL injection vulnerabilities in Crea-Book 1.0 (and possibly earlier) when magic_quotes_gpc is disabled. The flaws allow remote attackers to execute arbitrary SQL commands via the (1) pseudo or (2) passe parameter to any of the following ad...

6.8CVSS8.1AI score0.01936EPSS

Exploits0References13Affected Software1

NVD•added 2007/04/12 7:19 p.m.•18 views

CVE-2007-2000

Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 pseudo or 2 passe parameter...

7.5CVSS8.4AI score0.01217EPSS

Exploits0References5

ATTACKERKB•added 2007/04/12 7:19 p.m.•0 views

CVE-2007-2001

Multiple direct static code injection vulnerabilities in admin/configurer2.php in Crea-Book 1.0 and earlier allow remote authenticated administrators to execute arbitrary PHP code via the "Fond de la page" background color field and other unspecified fields, which injects into config.inc.php3...

6.5CVSS6.2AI score0.05378EPSS

Exploits0References4

ATTACKERKB•added 2007/04/12 7:19 p.m.•2 views

CVE-2007-2000

Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 pseudo or 2 passe parameter...

7.5CVSS6.3AI score0.01217EPSS

Exploits0References6

Prion•added 2007/04/12 7:19 p.m.•15 views

Sql injection

Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 pseudo or 2 passe parameter...

7.5CVSS8.9AI score0.01217EPSS

Exploits0References5Affected Software1

CVE•added 2007/04/12 7:0 p.m.•60 views

CVE-2007-2000

CVE-2007-2000 affects Crea-Book 1.0 and earlier. The vulnerability is multiple SQL injection flaws in admin/admin.php, exploitable via the (1) pseudo or (2) passe parameter, allowing remote attackers to run arbitrary SQL commands. The description in the connected documents confirms this vector an...

7.5CVSS8.5AI score0.01217EPSS

Exploits0References5Affected Software1

Cvelist•added 2007/04/12 7:0 p.m.•19 views

CVE-2007-2001

7.6AI score0.05378EPSS

Exploits0References3

Cvelist•added 2007/04/12 7:0 p.m.•22 views

CVE-2007-2000

Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 pseudo or 2 passe parameter...

8.4AI score0.01217EPSS

Exploits0References5

CVE•added 2007/04/12 7:0 p.m.•44 views

CVE-2007-2001

CVE-2007-2001 affects Crea-Book 1.0 and earlier via admin/configurer2.php. The vulnerability arises from direct static code injections in the Fond de la page (background color) field and related fields, allowing remote authenticated administrators to execute arbitrary PHP code and inject into con...

6.5CVSS7.6AI score0.05378EPSS

Exploits0References3Affected Software1

Packet Storm•added 2007/04/11 12:0 a.m.•26 views

creabook-bypass.txt

7.4AI score

Exploits0

securityvulns•added 2007/04/11 12:0 a.m.•86 views

Crea-Book <= 1.0 Admin Access Bypass / DB Disclosure / Code Execution

/======================================= | Advisory :: Crea-Book = 1.0 | +=======================================+--------------------------------------------------------------- | | | Download link : http://www.comscripts.com/scripts/php.creabook.1359.html | | Type : Guestbook | | Vuln. found :...

8.4AI score

Exploits0

Exploit DB•added 2007/04/10 12:0 a.m.•39 views

Crea-Book 1.0 - Admin Access Bypass / Database Disclosure / Code Execution

7.4AI score

Exploits0

seebug.org•added 2007/04/10 12:0 a.m.•16 views

Crea-Book <= 1.0 Admin Access Bypass / DB Disclosure / Code Execution

No description provided by source. /=======================================\ | Advisory :: Crea-Book = 1.0 | +=======================================+---------------------------------------------------------------\ | | | Download link : http://www.comscripts.com/scripts/php.creabook.1359.html | |...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by