Lucene search
K

87 matches found

Prion
Prion
added 2009/04/17 2:8 p.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in AbleSpace 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 eid parameter to eventsview.php and the 2 id parameter to eventsclndrview.php...

7.5CVSS9.3AI score0.01018EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2008/04/30 12:0 a.m.49 views

CVE-2008-2012

CVE-2008-2012 affects the PostSchedule 1.0 module for PostNuke. A SQL injection in index.php allows remote attackers to modify the database by supplying the eid parameter in an event action. Documented impact: arbitrary SQL execution with a CVSSv2 base score of 7.5 (HIGH). No remediation details ...

7.5CVSS8.4AI score0.01103EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2007/05/11 4:19 p.m.13 views

CVE-2007-2621

SQL injection vulnerability in eventview.php in Thyme Calendar 1.3 allows remote attackers to execute arbitrary SQL commands via the eid parameter...

7.5CVSS8.4AI score0.02493EPSS
Exploits0References6
Prion
Prion
added 2007/05/11 4:19 p.m.17 views

Sql injection

SQL injection vulnerability in eventview.php in Thyme Calendar 1.3 allows remote attackers to execute arbitrary SQL commands via the eid parameter...

7.5CVSS8.8AI score0.02493EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/05/11 12:0 a.m.59 views

Thyme event_view.php eid Parameter SQL Injection

The remote host is running Thyme, a web-based calendar. The version of Thyme installed on the remote host fails to properly sanitize user-supplied input to the 'eid' parameter of the 'eventview.php' script before using it to build a database query. Regardless of PHP's 'magicquotesgpc' setting, an...

7.5CVSS5.8AI score0.02493EPSS
Exploits0References2
NVD
NVD
added 2005/05/02 4:0 a.m.15 views

CVE-2005-0217

SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid parameter...

7.5CVSS8.4AI score0.0128EPSS
Exploits0References6
Cvelist
Cvelist
added 2005/02/06 5:0 a.m.19 views

CVE-2005-0217

SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid parameter...

8.4AI score0.0128EPSS
Exploits0References6
Rows per page
Query Builder