CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

seebug.org•added 2014/07/01 12:0 a.m.•10 views

dl_stats Multiple Vulnerabilities

7.1AI score

Exploits0

NVD•added 2010/04/23 2:30 p.m.•13 views

CVE-2010-1498

Multiple SQL injection vulnerabilities in dlstats before 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 download.php and 2 viewfile.php...

7.5CVSS8.5AI score0.02252EPSS

Exploits1References10

Prion•added 2010/04/23 2:30 p.m.•8 views

Sql injection

Multiple SQL injection vulnerabilities in dlstats before 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 download.php and 2 viewfile.php...

7.5CVSS9.3AI score0.02252EPSS

Exploits1References10Affected Software1

CVE•added 2010/04/23 2:0 p.m.•38 views

CVE-2010-1498

Multiple SQL injection vulnerabilities affect the dl_stats package before version 2.0. The issue allows remote attackers to execute arbitrary SQL commands by supplying a crafted id parameter to two PHP endpoints: download.php and view_file.php. This conclusion is supported by CVE-2010-1498 record...

7.5CVSS8.8AI score0.02252EPSS

Exploits1References10Affected Software1

Cvelist•added 2010/04/23 2:0 p.m.•11 views

CVE-2010-1497

Cross-site scripting XSS vulnerability in downloadproc.php in dlstats before 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

5.7AI score0.07995EPSS

Exploits1References9

Cvelist•added 2010/04/23 2:0 p.m.•13 views

CVE-2010-1498

Multiple SQL injection vulnerabilities in dlstats before 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 download.php and 2 viewfile.php...

8.5AI score0.02252EPSS

Exploits1References10

CVE•added 2010/04/23 2:0 p.m.•35 views

CVE-2010-1497

The vulnerability CVE-2010-1497 affects the dl_stats web application (before version 2.0) via download_proc.php, where the id parameter is not properly sanitized, enabling Cross‑Site Scripting (XSS) by remote attackers. Impact described in OpenVAS entries includes attacker‑delivered scripts that ...

4.3CVSS5.9AI score0.07995EPSS

Exploits1References9Affected Software1

Packet Storm•added 2010/04/19 12:0 a.m.•56 views

DL_Stats Cross Site Scripting / Admin Bypass / SQL Injection

Exploit Title: dlstats Multiple Vulnerabilities Date: 18.04.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats Multiple...

0.3AI score

Exploits0

Exploit DB•added 2010/04/18 12:0 a.m.•26 views

dl_stats - Multiple Vulnerabilities

:::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats Multiple Vulnerabilitie |:: Author = Valentin Hoebel |:: Contact = [email protected] |:: |:: :::::::::::::::::::::::::::::::::::::: 0x2...

7.4AI score

Exploits0

exploitpack•added 2010/04/18 12:0 a.m.•14 views

dl_stats - Multiple Vulnerabilities

0.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by