CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-1126

Malware in sbrugna...

6.8CVSS6.4AI score0.01638EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2006-1127

Malware in sbrugna...

10CVSS6.4AI score0.01957EPSS

Exploits1References8

Prion•added 2006/03/09 9:2 p.m.•16 views

Sql injection

SQL injection vulnerability in D2KBlog 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the memName parameter in a cookie...

10CVSS9.1AI score0.01957EPSS

Exploits1References7Affected Software1

Prion•added 2006/03/09 9:2 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in Default.asp in D2KBlog 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter...

6.8CVSS6.2AI score0.01638EPSS

Exploits1References7Affected Software1

NVD•added 2006/03/09 9:2 p.m.•14 views

CVE-2006-1122

Cross-site scripting XSS vulnerability in Default.asp in D2KBlog 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter...

6.8CVSS5.7AI score0.01638EPSS

Exploits1References7

NVD•added 2006/03/09 9:2 p.m.•16 views

CVE-2006-1123

SQL injection vulnerability in D2KBlog 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the memName parameter in a cookie...

10CVSS8.3AI score0.01957EPSS

Exploits1References7

CVE•added 2006/03/09 9:0 p.m.•57 views

CVE-2006-1123

The CVE covers a SQL injection in D2KBlog 1.0.3 and earlier, exploitable via the memName cookie parameter. Root cause: unsafely constructed SQL using cookie data, enabling remote execution of arbitrary SQL commands. Impact is high (complete confidentiality, integrity, and availability) per the CV...

10CVSS8.4AI score0.01957EPSS

Exploits1References7Affected Software1

Cvelist•added 2006/03/09 9:0 p.m.•20 views

CVE-2006-1122

Cross-site scripting XSS vulnerability in Default.asp in D2KBlog 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter...

5.7AI score0.01638EPSS

Exploits1References7

CVE•added 2006/03/09 9:0 p.m.•43 views

CVE-2006-1122

CVE-2006-1122 describes a cross-site scripting (XSS) vulnerability in Default.asp of D2KBlog 1.0.3 and earlier. The issue allows remote attackers to inject arbitrary script/HTML via the msg parameter. Affected software is D2KBlog prior to or at version 1.0.3; root cause is improper handling of us...

6.8CVSS5.7AI score0.01638EPSS

Exploits1References7Affected Software1

Cvelist•added 2006/03/09 9:0 p.m.•25 views

CVE-2006-1123

SQL injection vulnerability in D2KBlog 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the memName parameter in a cookie...

8.3AI score0.01957EPSS

Exploits1References7

seebug.org•added 2006/03/09 12:0 a.m.•19 views

d2kBlog 1.0.3 (memName) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w D2KBLOG SQL injection Discovered by : Farhad Koosha farhadkey at kapda.ir Exploited by : devilbox devilbox at kapda.ir member of : Kapda.ir - Security Science Researchers Institute of Iran persianhacker.net require LWP::UserAgent; require...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by