Lucene search
K

17 matches found

OSV
OSV
added 2025/11/12 10:15 p.m.2 views

CVE-2025-63645

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

5.4CVSS5.7AI score0.00175EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-7041

Malware in sbrugna...

4.3CVSS6.4AI score0.01107EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-7042

Malware in sbrugna...

5CVSS6.4AI score0.01309EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-7043

Malware in sbrugna...

9.3CVSS6.4AI score0.01796EPSS
Exploits0References4
CNVD
CNVD
added 2019/11/26 12:0 a.m.2 views

Code Execution Vulnerability in OElove Wedding Dating System v5.6

OElove wedding dating system is based on OEdev OEdev based on independent research and development of the OEPHP architecture system, launched a set of localized operation of the wedding, dating theme class of free dating website system. A code execution vulnerability exists in OElove Wedding Dati...

7.6AI score
Exploits0
CNVD
CNVD
added 2016/11/15 12:0 a.m.5 views

Boonex Dolphin has multiple vulnerabilities

Boonex Dolphin is an open source dating community system from Boonex Australia. The system includes modules for online audio and video chat, video sharing and personal blogs. An authentication bypass and remote code execution vulnerability exists in Boonex Dolphin 7.3.2 and earlier versions, whic...

8.7AI score
Exploits0References1
CNVD
CNVD
added 2016/10/31 12:0 a.m.5 views

Boonex Dolphin Authentication Bypass Vulnerability

Boonex Dolphin is an open source dating community system from Boonex Australia. The system includes modules for online audio and video chat, video sharing and personal blogs. An authentication bypass vulnerability exists in Boonex Dolphin 7.3.2 and earlier versions, which can be exploited by...

7AI score
Exploits0References1
myhack58
myhack58
added 2010/04/22 12:0 a.m.20 views

Water-like moonlight Dating system 2 0 1 0 injection vulnerability-vulnerability warning-the black bar safety net

In the program getpass. asp this file. if request. QueryString"action"="rsend" then if request"uname"="" or request"uemail"="" then response. Write"scriptalert’please input login user name and registered e-mail address’;history. back;/script" end if if request"upass1"="" or request"upass2"="" the...

7.6AI score
Exploits0
NVD
NVD
added 2007/02/24 1:28 a.m.12 views

CVE-2006-7061

Scriptsez.net E-Dating System stores data files with predictable names under the web document root with insufficient access control, which allows remote attackers to read private messages and leverage them for cross-site scripting XSS attacks...

9.3CVSS5.8AI score0.01796EPSS
Exploits0References3
NVD
NVD
added 2007/02/24 1:28 a.m.9 views

CVE-2006-7060

cindex.php in Scriptsez.net E-Dating System allows remote attackers to obtain the full path via an invalid id parameter in a dologin action, which leaks the path in an error message...

5CVSS6.5AI score0.01309EPSS
Exploits1References3
NVD
NVD
added 2007/02/24 1:28 a.m.14 views

CVE-2006-7059

Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net E-Dating System allow remote attackers to inject arbitrary web script or HTML via encoded entities &0000039 in IMG tags to 1 messages, 2 profile fields, or 3 the id parameter in a dologin operation to cindex.php...

4.3CVSS5.8AI score0.01107EPSS
Exploits1References5
Cvelist
Cvelist
added 2007/02/24 1:0 a.m.20 views

CVE-2006-7061

Scriptsez.net E-Dating System stores data files with predictable names under the web document root with insufficient access control, which allows remote attackers to read private messages and leverage them for cross-site scripting XSS attacks...

5.8AI score0.01796EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/02/24 1:0 a.m.17 views

CVE-2006-7060

cindex.php in Scriptsez.net E-Dating System allows remote attackers to obtain the full path via an invalid id parameter in a dologin action, which leaks the path in an error message...

6.5AI score0.01309EPSS
Exploits1References3
Cvelist
Cvelist
added 2007/02/24 1:0 a.m.19 views

CVE-2006-7059

Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net E-Dating System allow remote attackers to inject arbitrary web script or HTML via encoded entities &0000039 in IMG tags to 1 messages, 2 profile fields, or 3 the id parameter in a dologin operation to cindex.php...

5.8AI score0.01107EPSS
Exploits1References5
CVE
CVE
added 2007/02/24 1:0 a.m.46 views

CVE-2006-7061

CVE-2006-7061 affects Scriptsez.net E-Dating System. The vulnerability stems from storing data files with predictable names under the web document root and insufficient access control, enabling remote attackers to read private messages and potentially leverage them for XSS. The connected document...

9.3CVSS6.1AI score0.01796EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2007/02/24 1:0 a.m.35 views

CVE-2006-7060

The CVE-2006-7060 entry concerns the Scriptsez.net E-Dating System, specifically the file/component cindex.php. Affected behavior is a remote disclosure where an invalid id parameter in a dologin action causes an error message that reveals the full filesystem path, leading to potential informatio...

5CVSS6.9AI score0.01309EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2007/02/24 1:0 a.m.36 views

CVE-2006-7059

CVE-2006-7059 affects Scriptsez.net E-Dating System. The issue is multiple cross-site scripting (XSS) vulnerabilities that let remote attackers inject arbitrary script/HTML via encoded entities (&#0000039) in IMG tags to (1) messages, (2) profile fields, or (3) the id parameter in a dologin opera...

4.3CVSS6AI score0.01107EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder