Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.19 views

Debian Security Advisory DSA 1374-1 (jffnms)

The remote host is missing an update to jffnms announced via advisory DSA 1374-1. OpenVAS Vulnerability Test $Id: deb13741.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1374-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

9.4CVSS1.4AI score0.08383EPSS
Exploits2
OSV
OSV
added 2007/09/11 12:0 a.m.32 views

DSA-1374-1 jffnms - several vulnerabilities

Bulletin has no description...

9.4CVSS6AI score0.08383EPSS
Exploits2
NVD
NVD
added 2007/06/12 11:30 p.m.19 views

CVE-2007-3190

Multiple SQL injection vulnerabilities in auth.php in Just For Fun Network Management System JFFNMS 0.8.3, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 user and 2 pass parameters...

6.8CVSS8.3AI score0.01448EPSS
Exploits0References6
Prion
Prion
added 2007/06/12 11:30 p.m.10 views

Sql injection

SQL injection vulnerability in auth.php in Just For Fun Network Management System JFFNMS 0.8.4-pre2 allows remote attackers to execute arbitrary SQL commands via the pass parameter. NOTE: this issue reportedly exists because of an initial incomplete fix for CVE-2007-3190. The provenance of this...

7.5CVSS8.3AI score0.01448EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2007/06/12 11:0 p.m.50 views

CVE-2007-3190

CVE-2007-3190 involves multiple SQL injection flaws in Just For Fun Network Management System (JFFNMS) 0.8.3, specifically in auth.php. The vulnerabilities allow remote attackers to execute arbitrary SQL commands via the user and pass parameters when magic_quotes_gpc is disabled. Public advisorie...

6.8CVSS8.2AI score0.01448EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder