CVE-2026-4968

A vulnerability was determined in SourceCodester Diary App 1.0. The affected element is an unknown function of the file diary.php. Executing a manipulation can lead to cross-site request forgery. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized...

CVE-2026-4968

A vulnerability was determined in SourceCodester Diary App 1.0. The affected element is an unknown function of the file diary.php. Executing a manipulation can lead to cross-site request forgery. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized...

CVE-2026-4968

The CVE-2026-4968 entry describes a cross-site request forgery in SourceCodester Diary App 1.0, targeting an unknown function in diary.php. A remote attacker could exploit this CSRF if a user interacts with a malicious page; the exploit has been publicly disclosed. The available documents do not ...

SourceCodester Diary App 安全漏洞

The SourceCodester Diary App is an open-source diary application developed by SourceCodester. Version 1.0 of the SourceCodester Diary App contains a security vulnerability, which stems from incorrect handling of the diary.php file. This vulnerability may lead to cross-site request forgery attacks...

PT-2026-28693

Name of the Vulnerable Software and Affected Versions SourceCodester Diary App version 1.0 Description A cross-site request forgery condition exists in SourceCodester Diary App version 1.0. The issue is related to a manipulation of an unknown function within the diary.php file. The exploit has be...

EUVD-2007-3055

Malware in sbrugna...

My Databook diary.php delete Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/24311/info My DataBook is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication...

My Databook diary.php year Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/24311/info My DataBook is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Sql injection

SQL injection vulnerability in diary.php in My Databook allows remote attackers to execute arbitrary SQL commands via the delete parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter...

CVE-2007-3064

Cross-site scripting XSS vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter...

CVE-2007-3063

SQL injection vulnerability in diary.php in My Databook allows remote attackers to execute arbitrary SQL commands via the delete parameter...

CVE-2007-3064

CVE-2007-3064 affects My Databook’s diary.php with a stored/reflected XSS via the year parameter. Multiple sources (NVD, CVE listings, PRION/CVELIST) confirm the impact as arbitrary script execution by remote attackers; no concrete remediation or fixed version is stated in the provided documents....

CVE-2007-3064

Cross-site scripting XSS vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter...

My Databook - diary.php?delete SQL Injection

My Databook - diary.php?delete SQL Injection source: https://www.securityfocus.com/bid/24311/info My DataBook is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based...