Lucene search
K

5 matches found

NVD
NVD
added 2008/03/17 5:44 p.m.13 views

CVE-2008-1355

Cross-site scripting XSS vulnerability in index.php in Jeebles Technology Jeebles Directory 2.9.60 allows remote attackers to inject arbitrary web script or HTML via the path parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...

4.3CVSS5.6AI score0.01449EPSS
Exploits1References3
CVE
CVE
added 2008/03/17 5:0 p.m.41 views

CVE-2008-1355

CVE-2008-1355 describes a Cross-site scripting (XSS) vulnerability in the Jeebles Directory 2.9.60, specifically in index.php where the attacker can inject arbitrary web script or HTML via the path parameter. The issue is caused by improper handling of the path parameter, allowing remote code exe...

4.3CVSS5.6AI score0.01449EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2007/10/29 10:0 p.m.46 views

CVE-2007-5706

CVE-2007-5706 describes an absolute path traversal vulnerability in the download.php of Jeebles Directory 2.9.60. An attacker can read arbitrary files by supplying a full pathname in the query string. The vulnerability is documented across multiple sources and is classified as a high-severity iss...

9.3CVSS6.7AI score0.02666EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/10/29 10:0 p.m.20 views

CVE-2007-5705

Unspecified vulnerability in the Settings component in the administration system in Jeebles Directory 2.9.60 allows remote authenticated administrators to execute arbitrary PHP code via unspecified vectors related to settings.inc.php. NOTE: the provenance of this information is unknown; the detai...

6.9AI score0.00857EPSS
Exploits0References2
exploitpack
exploitpack
added 2007/10/22 12:0 a.m.15 views

Jeebles Technology Jeebles Directory 2.9.60 - download.php Local File Inclusion

Jeebles Technology Jeebles Directory 2.9.60 - download.php Local File Inclusion source: https://www.securityfocus.com/bid/26171/info Jeebles Directory is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an...

7.4AI score
Exploits0
Rows per page
Query Builder