Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1027

Malware in sbrugna...

5CVSS6.4AI score0.01539EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-1026

Malware in sbrugna...

5CVSS6.4AI score0.01864EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-0889

Malware in sbrugna...

4.3CVSS6.4AI score0.0121EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2005-0888

Malware in sbrugna...

7.5CVSS6.4AI score0.02737EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-1028

Malware in sbrugna...

5CVSS6.4AI score0.01871EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Double Choco Latte 0.9.3/0.9.4 main.php Arbitrary PHP Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/12894/info Double Choco Latte is reported prone to multiple vulnerabilities. These issues result from insufficient sanitization of user-supplied data and may allow an attacker to carry out cross-site scripting/HTML...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2005/04/18 12:0 a.m.25 views

double094.txt

GulfTech Security Research April 8th, 2005 Vendor : Michael Dean URL : http://dcl.sourceforge.net/ Version : Double Choco Latte 0.9.4 .3 && Earlier Risk : Multiple Vulnerabilities Description: Double Choco Latte is a GNU Enterprise package that provides basic project management capabilities, time...

Exploits0
Debian CVE
Debian CVE
added 2005/03/26 5:0 a.m.17 views

CVE-2005-0887

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in 1 functions.inc.php or 2 main.php, which causes code to be injected into an eval statement...

7.5CVSS7.9AI score0.02737EPSS
Exploits0
Cvelist
Cvelist
added 2005/03/26 5:0 a.m.24 views

CVE-2005-0887

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in 1 functions.inc.php or 2 main.php, which causes code to be injected into an eval statement...

7.8AI score0.02737EPSS
Exploits0References4
CVE
CVE
added 2005/03/26 5:0 a.m.44 views

CVE-2005-0887

The CVE-2005-0887 issue affects Double Choco Latte prior to 0.9.4.3. Root cause: eval() executed with user-supplied input via the menuAction variable in functions.inc.php or main.php, enabling remote arbitrary PHP code execution. Impact: partial confidentiality, integrity, and availability depend...

7.5CVSS7.8AI score0.02737EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2005/03/24 5:0 a.m.14 views

CVE-2005-0887

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in 1 functions.inc.php or 2 main.php, which causes code to be injected into an eval statement...

7.5CVSS7.8AI score0.02737EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2005/03/24 12:0 a.m.32 views

Double Choco Latte 0.9.3/0.9.4 - 'main.php' Arbitrary PHP Code Execution

source: https://www.securityfocus.com/bid/12894/info Double Choco Latte is reported prone to multiple vulnerabilities. These issues result from insufficient sanitization of user-supplied data and may allow an attacker to carry out cross-site scripting/HTML injection attacks and execute arbitrary...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/03/24 12:0 a.m.20 views

Double Choco Latte 0.9.30.9.4 - main.php Arbitrary PHP Code Execution

Double Choco Latte 0.9.30.9.4 - main.php Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/12894/info Double Choco Latte is reported prone to multiple vulnerabilities. These issues result from insufficient sanitization of user-supplied data and may allow an attacker to carry...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2005/03/24 12:0 a.m.34 views

[SA14688] Double Choco Latte Cross-Site Scripting and PHP Code Execution

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Double Choco Latte Cross-Site Scripting and PHP Code...

1.4AI score
Exploits0
Debian CVE
Debian CVE
added 2003/04/02 5:0 a.m.18 views

CVE-2002-1039

Directory traversal vulnerability in Double Choco Latte DCL before 20020706 allows remote attackers to read arbitrary files via .. dot dot sequences when downloading files from the Projects: Attachments feature...

5CVSS6.6AI score0.01871EPSS
Exploits0
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.19 views

CVE-2002-1039

Directory traversal vulnerability in Double Choco Latte DCL before 20020706 allows remote attackers to read arbitrary files via .. dot dot sequences when downloading files from the Projects: Attachments feature...

6.7AI score0.01871EPSS
Exploits0References4
CVE
CVE
added 2003/04/02 5:0 a.m.53 views

CVE-2002-1039

The vulnerability CVE-2002-1039 affects Double Choco Latte (DCL) prior to 20020706. A directory traversal in the Projects: Attachments feature lets remote attackers read arbitrary files by manipulating .. sequences during file download. The impact is described as partial confidentiality loss. No ...

5CVSS6.7AI score0.01871EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2002/10/04 4:0 a.m.13 views

CVE-2002-1039

Directory traversal vulnerability in Double Choco Latte DCL before 20020706 allows remote attackers to read arbitrary files via .. dot dot sequences when downloading files from the Projects: Attachments feature...

5CVSS6.7AI score0.01871EPSS
Exploits0References4
NVD
NVD
added 2002/10/04 4:0 a.m.15 views

CVE-2002-1037

Cross-site scripting vulnerability in Double Choco Latte DCL before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the 1 Ticket Find, 2 Priorities, 3 Severities, 4 Projects, 5 WO Find, 6 Departments and 7 Users features...

5CVSS6.4AI score0.01864EPSS
Exploits0References5
NVD
NVD
added 2002/10/04 4:0 a.m.14 views

CVE-2002-1038

Double Choco Latte DCL before 20020706 does not properly verify if a file was uploaded, which allows remote attackers to conduct certain operations on arbitrary files via the 1 Projects: Upload File Attachment or 2 Work Orders: Import features...

5CVSS6.8AI score0.01539EPSS
Exploits0References4
Rows per page
Query Builder