Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-3235

Malware in sbrugna...

6.8CVSS6.4AI score0.03688EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-3236

Malware in sbrugna...

4.3CVSS6.4AI score0.01976EPSS
Exploits1References8
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Cyphor <= 0.19 (board takeover) SQL Injection Exploit

No description provided by source. ?php quoted from rgod 1if magic quotes off - SQL Injection: /str0ke --- cyphor019xpl.php 7.36 08/10/2005 Cyphor 0.19 possibly prior versions SQL injection / board takeover by rgod site: http://rgod.altervista.org make these changes in php.ini if you have trouble...

7.1AI score
Exploits0
NVD
NVD
added 2005/10/14 10:2 a.m.5 views

CVE-2005-3237

Cross-site scripting XSS vulnerability in Cyphor 0.19 allows remote attackers to inject arbitrary web script or HTML via the tlogin parameter of footer.php...

4.3CVSS5.7AI score0.01976EPSS
Exploits1References7
CVE
CVE
added 2005/10/14 4:0 a.m.43 views

CVE-2005-3236

Cyphor 0.19 is affected by two SQL injection vulnerabilities described in CVE-2005-3236. The issues reside in (1) newmsg.php using the fid parameter and (2) lostpwd.php using the nick parameter. Successful exploitation can allow remote attackers to execute arbitrary SQL and potentially gain admin...

6.8CVSS7.9AI score0.03688EPSS
Exploits0References9Affected Software1
securityvulns
securityvulns
added 2005/10/09 12:0 a.m.48 views

Cyphor 0.19 SQL Injection / Board takeover / cross site scripting

Cyphor 0.19 SQL Injection / Board takeover / cross site scripting 1if magic quotes off - SQL Injection: by "Forgot your password?" feature you can send yourself a new admin password and reset it, poc: email: youremail nick: 'or'X'='X soon, you will receive an email like this: You have registered...

8.4AI score
Exploits0
exploitpack
exploitpack
added 2005/10/08 12:0 a.m.11 views

Cyphor 0.19 - newmsg.php?fid SQL Injection

Cyphor 0.19 - newmsg.php?fid SQL Injection source: https://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2005/10/08 12:0 a.m.24 views

Cyphor 0.19 - lostpwd.php?nick SQL Injection

Cyphor 0.19 - lostpwd.php?nick SQL Injection source: https://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2005/10/08 12:0 a.m.49 views

Cyphor 0.19 - &#039;lostpwd.php?nick&#039; SQL Injection

source: https://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other attacks are also possible. ?php ---...

7AI score
Exploits0
Rows per page
Query Builder