Lucene search
K

6 matches found

NVD
NVD
added 2015/02/11 7:59 p.m.39 views

CVE-2015-1518

SQL injection vulnerability in the searchpost function in includes/search.php in Redaxscript before 2.3.0 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

7.5CVSS8.2AI score0.02397EPSS
Exploits5References5
Cvelist
Cvelist
added 2015/02/11 7:0 p.m.40 views

CVE-2015-1518

SQL injection vulnerability in the searchpost function in includes/search.php in Redaxscript before 2.3.0 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

8.2AI score0.02397EPSS
Exploits5References5
CVE
CVE
added 2015/02/11 7:0 p.m.71 views

CVE-2015-1518

The CVE-2015-1518 entry concerns Redaxscript, where versions prior to 2.3.0 contain a SQL injection in includes/search.php (search_post) that accepts input via the search_terms parameter, enabling remote arbitrary SQL execution. Public PoCs/exploits exist (e.g., PacketStorm, Exploit-DB entries) d...

7.5CVSS8.3AI score0.02397EPSS
Exploits5References5Affected Software1
Kaspersky
Kaspersky
added 2015/02/11 12:0 a.m.42 views

KLA10501 Code execution Redaxscript vulnerability

SQL injection vulnerability was found in Redaxscript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a searchterms parameters. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...

7.5CVSS8.2AI score0.02397EPSS
Exploits5References2
Exploit DB
Exploit DB
added 2015/02/09 12:0 a.m.55 views

RedaxScript CMS 2.2.0 - SQL Injection

Exploit Title: Radexscript CMS 2.2.0 - SQL Injection vulnerability Google Dork: N/A Date: 02/09/2015 Exploit Author: Pham Kien Cuong [email protected] & ITAS Team www.itas.vn Vendor Homepage: http://redaxscript.com/ Software Link: http://redaxscript.com/download/releases Version: Redaxscript...

7.5CVSS6.5AI score0.02397EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/02/09 12:0 a.m.67 views

Radexscript CMS 2.2.0 SQL Injection

Vulnerability title: Radexscript CMS 2.2.0 - SQL Injection vulnerability Vendor: http://redaxscript.com/ Product: Radexscript CMS Software link: http://redaxscript.com/download/releases Affected version: Redaxscript 2.2.0 Fixed version: Redaxscript 2.3.0 CVE ID: CVE-2015-1518 Author: Pham Kien...

7.5CVSS0.8AI score0.02397EPSS
Exploits5
Rows per page
Query Builder