Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-2536

Malware in sbrugna...

5.8CVSS6.4AI score0.01299EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-2584

Malware in sbrugna...

6.4CVSS6.4AI score0.01144EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2534

Malware in sbrugna...

5CVSS6.4AI score0.0134EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-2535

Malware in sbrugna...

5CVSS6.4AI score0.01798EPSS
Exploits0References6
NVD
NVD
added 2006/05/25 10:2 a.m.14 views

CVE-2006-2585

SQL injection vulnerability in Destiney Links Script 2.1.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.4CVSS8AI score0.01144EPSS
Exploits0References3
Prion
Prion
added 2006/05/25 10:2 a.m.12 views

Sql injection

SQL injection vulnerability in Destiney Links Script 2.1.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.4CVSS8.4AI score0.01144EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2006/05/25 10:0 a.m.16 views

CVE-2006-2585

SQL injection vulnerability in Destiney Links Script 2.1.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

8AI score0.01144EPSS
Exploits0References3
CVE
CVE
added 2006/05/25 10:0 a.m.55 views

CVE-2006-2585

The connected records confirm a SQL injection vulnerability in Destiney Links Script 2.1.2, exploitable via the ID parameter. Affected component: the script’s interaction with a database (unsafely concatenated/handled SQL). Root cause: lack of input sanitization/parameterization for the ID value ...

6.4CVSS8.1AI score0.01144EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2006/05/22 11:10 p.m.15 views

CVE-2006-2534

Destiney Links Script 2.1.2 does not protect library and other support files, which allows remote attackers to obtain the installation path via a direct URL to files in the 1 include and 2 themes/original directories...

5CVSS6.5AI score0.0134EPSS
Exploits0References3
Prion
Prion
added 2006/05/22 11:10 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in Destiney Links Script 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the 1 "Search" term parameter in index.php and 2 "Add a Site" add.php fields...

5.8CVSS6.2AI score0.01299EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/05/22 11:0 p.m.16 views

CVE-2006-2534

Destiney Links Script 2.1.2 does not protect library and other support files, which allows remote attackers to obtain the installation path via a direct URL to files in the 1 include and 2 themes/original directories...

6.5AI score0.0134EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/05/22 11:0 p.m.16 views

CVE-2006-2535

index.php in Destiney Links Script 2.1.2 allows remote attackers to obtain the installation path via an invalid show parameter referencing a non-existent file, which reveals the path in the resulting error message. NOTE: this issue might be resultant from a more serious issue such as directory...

6.6AI score0.01798EPSS
Exploits0References5
CVE
CVE
added 2006/05/22 11:0 p.m.47 views

CVE-2006-2535

CVE-2006-2535 affects the Destiney Links Script 2.1.2. The vulnerable component is index.php, where an invalid show parameter referencing a non-existent file leads to an error message that reveals the installation path. The notes suggest this could be related to a broader directory traversal issu...

5CVSS6.6AI score0.01798EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2006/05/22 11:0 p.m.17 views

CVE-2006-2536

Cross-site scripting XSS vulnerability in Destiney Links Script 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the 1 "Search" term parameter in index.php and 2 "Add a Site" add.php fields...

5.7AI score0.01299EPSS
Exploits0References6
CVE
CVE
added 2006/05/22 11:0 p.m.47 views

CVE-2006-2536

CVE-2006-2536 is a cross-site scripting (XSS) vulnerability in Destiny Links Script 2.1.2. The flaw allows remote attackers to inject arbitrary web script or HTML via the Search term parameter in index.php and the Add a Site field in add.php. Public records (NVD/NVDR) show a base score of 5.8 (Me...

5.8CVSS5.7AI score0.01299EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2006/05/22 11:0 p.m.39 views

CVE-2006-2534

Destiny Links Script 2.1.2 is vulnerable to information disclosure: remote attackers can obtain the installation path by direct URLs to files under include and themes/original. The issue stems from inadequate protection of library/support files. No exploit details or remediation are provided in t...

5CVSS6.5AI score0.0134EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder