CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2009-4548

Malware in sbrugna...

7.5CVSS6.4AI score0.00147EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:41 a.m.•1 views

SUSE CVE-2017-12959

There is a reachable assertion abort in the function dictaddmrset in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to a remote denial of service attack...

7.5CVSS7.6AI score0.00157EPSS

Exploits0References3

Hacker One•added 2021/03/22 9:56 a.m.•29 views

Open-Xchange: Path Traversal in dict-fs and no-check Escape Character in oauth2-jwt

0x01 Path Traversal in dict-fs module If we use fs to store dictionaries, when program get the value of key: static int fsdictlookupstruct dict dict, poolt pool, const char key, const char valuer, const char errorr struct fsdict dict = struct fsdict dict; struct fsfile file; struct istream input;...

2.1CVSS1.8AI score0.00762EPSS

Exploits0

NVD•added 2010/01/06 10:0 p.m.•10 views

CVE-2009-4582

SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.00147EPSS

Exploits1References3

Prion•added 2010/01/06 10:0 p.m.•7 views

Sql injection

SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.00147EPSS

Exploits1References3Affected Software1

Cvelist•added 2010/01/06 9:33 p.m.•15 views

CVE-2009-4582

SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.00147EPSS

Exploits1References3

CVE•added 2010/01/06 9:33 p.m.•41 views

CVE-2009-4582

The supplied documents confirm a concrete vulnerability: XOOPS 2.0.18, within the Dictionary module, is affected by an SQL injection in detail.php. The issue arises from the id parameter, which allows remote attackers to execute arbitrary SQL commands. This is a database command injection affecti...

7.5CVSS8.7AI score0.00147EPSS

Exploits1References3Affected Software1

Tenable Nessus•added 2008/03/19 12:0 a.m.•20 views

XOOPS Dictionary Module print.php id Parameter SQL Injection

The version of the Dictionary module for XOOPS installed on the remote host fails to sanitize user-supplied input to the 'id' parameter of the 'print.php' script before using it in a database query. Regardless of PHP's 'magicquotesgpc' setting, an attacker may be able to exploit this issue to...

5.9AI score

Exploits0

Tenable Nessus•added 2004/08/31 12:0 a.m.•9 views

Nagl Dictionary Module for XOOPS XSS

Binary data 2187.prm...

4.3CVSS7.3AI score0.01111EPSS

Exploits1References1

securityvulns•added 2004/08/31 12:0 a.m.•21 views

Cross Site Scripting in XOOPS Version 2.x Dictionary module

-------------------------------------------------------------------------- Cross Site Scripting in XOOPS Version 2.x Dictionary module -------------------------------------------------------------------------- Type: Cross Site Scripting XSS Titule: Xoops Dictionary module by nagl Date: August 28,...

0.3AI score

Exploits0

Exploit DB•added 2004/08/28 12:0 a.m.•38 views

Nagl XOOPS Dictionary Module 1.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/11064/info Reportedly the XOOPS Dictionary Module by Nagle is affected by multiple cross-site scripting vulnerabilities. This issue is due to a failure of the application to properly sanitize user-supplied URI input. As a result of this issue and attacker...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by