Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-6138

Malware in sbrugna...

7.5CVSS6.4AI score0.01001EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-6132

Malware in sbrugna...

7.5CVSS6.3AI score0.00991EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

GOUAE DWD Realty Password Parameters SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26579/info DWD Realty is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/11/30 12:0 a.m.25 views

GOUAE DWD Realty密码参数SQL注入漏洞

GOUAE DWD Realty是一款基于PHP的WEB应用程序。 GOUAE DWD Realty不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息或操作数据库。 问题是由于脚本对用户提交的用户名参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或可能操作数据库。 GOUAE DWD Reality 目前没有解决方案提供: http://ebusiness.gouae.com/realty.asp Username: Admin Password: anything' OR 'x'='x...

7.1AI score
Exploits0
Prion
Prion
added 2007/11/29 1:46 a.m.13 views

Sql injection

SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty allows remote attackers to execute arbitrary SQL commands via the pword aka Password parameter. NOTE: some of these details are obtained from third party information...

7.5CVSS8.6AI score0.00991EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2007/11/29 1:46 a.m.13 views

Sql injection

SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty allows remote attackers to execute arbitrary SQL commands via the uname parameter, a different vector than CVE-2007-6163. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

7.5CVSS8.4AI score0.01001EPSS
Exploits0References2
NVD
NVD
added 2007/11/29 1:46 a.m.17 views

CVE-2007-6169

SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty allows remote attackers to execute arbitrary SQL commands via the uname parameter, a different vector than CVE-2007-6163. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

7.5CVSS7.9AI score0.01001EPSS
Exploits0References2
NVD
NVD
added 2007/11/29 1:46 a.m.14 views

CVE-2007-6163

SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty allows remote attackers to execute arbitrary SQL commands via the pword aka Password parameter. NOTE: some of these details are obtained from third party information...

7.5CVSS8.2AI score0.00991EPSS
Exploits0References5
Cvelist
Cvelist
added 2007/11/29 1:0 a.m.21 views

CVE-2007-6163

SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty allows remote attackers to execute arbitrary SQL commands via the pword aka Password parameter. NOTE: some of these details are obtained from third party information...

8.2AI score0.00991EPSS
Exploits0References5
Cvelist
Cvelist
added 2007/11/29 1:0 a.m.18 views

CVE-2007-6169

SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty allows remote attackers to execute arbitrary SQL commands via the uname parameter, a different vector than CVE-2007-6163. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

7.9AI score0.01001EPSS
Exploits0References2
CVE
CVE
added 2007/11/29 1:0 a.m.45 views

CVE-2007-6169

CVE-2007-6169 concerns a SQL injection in admin/index2.asp of GOUAE DWD Realty. The vulnerable parameter is uname (distinct from CVE-2007-6163’s pword); exploitation would allow remote attackers to execute arbitrary SQL commands. The connected sources confirm a similar vulnerability in the same a...

7.5CVSS7.9AI score0.01001EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2007/11/29 1:0 a.m.49 views

CVE-2007-6163

CVE-2007-6163: Concrete details across connected sources show a SQL injection vulnerability in admin/index2.asp of GOUAE DWD Realty. The pword (Password) parameter is exploitable to execute arbitrary SQL commands, enabling remote attackers to interact with the database. Related entries also note ...

7.5CVSS8.3AI score0.00991EPSS
Exploits0References5Affected Software1
Exploit DB
Exploit DB
added 2007/11/26 12:0 a.m.21 views

GOUAE DWD Realty - 'Password' SQL Injection

source: https://www.securityfocus.com/bid/26579/info DWD Realty is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/11/26 12:0 a.m.8 views

GOUAE DWD Realty - Password SQL Injection

GOUAE DWD Realty - Password SQL Injection source: https://www.securityfocus.com/bid/26579/info DWD Realty is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

0.2AI score
Exploits0
Rows per page
Query Builder