Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-0278

Malware in sbrugna...

7.5CVSS6.4AI score0.01153EPSS
Exploits1References7
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

eTicket 1.5.5.2 admin.php CSRF

No description provided by source. source: http://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

eTicket 1.5.5.2 admin.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site...

7.1AI score
Exploits0
NVD
NVD
added 2008/01/15 8:0 p.m.20 views

CVE-2008-0266

Cross-site request forgery CSRF vulnerability in admin.php in eTicket 1.5.5.2 allows remote attackers to change the administrative password and possibly perform other administrative tasks. NOTE: either the old password must be known, or the attacker must leverage a separate SQL injection...

2.6CVSS8AI score0.00438EPSS
Exploits1References5
Prion
Prion
added 2008/01/15 8:0 p.m.16 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in admin.php in eTicket 1.5.5.2 allows remote attackers to change the administrative password and possibly perform other administrative tasks. NOTE: either the old password must be known, or the attacker must leverage a separate SQL injection...

2.6CVSS8.8AI score0.00438EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2008/01/15 8:0 p.m.11 views

CVE-2008-0268

Cross-site scripting XSS vulnerability in view.php in eTicket 1.5.5.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter...

4.3CVSS5.7AI score0.01513EPSS
Exploits1References5
Prion
Prion
added 2008/01/15 8:0 p.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in eTicket 1.5.5.2 allow remote authenticated users to execute arbitrary SQL commands via the 1 status, 2 sort, and 3 way parameters to search.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the 4 msg and 5 password...

7.5CVSS9AI score0.01153EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/01/15 7:0 p.m.14 views

CVE-2008-0268

Cross-site scripting XSS vulnerability in view.php in eTicket 1.5.5.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter...

5.7AI score0.01513EPSS
Exploits1References5
Cvelist
Cvelist
added 2008/01/15 7:0 p.m.21 views

CVE-2008-0266

Cross-site request forgery CSRF vulnerability in admin.php in eTicket 1.5.5.2 allows remote attackers to change the administrative password and possibly perform other administrative tasks. NOTE: either the old password must be known, or the attacker must leverage a separate SQL injection...

8AI score0.00438EPSS
Exploits1References5
CVE
CVE
added 2008/01/08 1:0 a.m.40 views

CVE-2008-0093

CVE-2008-0093 refers to multiple cross-site scripting (XSS) vulnerabilities in the web application eTicket, specifically in the script newticket.php. The affected versions are eTicket 1.5.5.2 and 1.5.6 RC2/RC3. The vulnerability allows remote attackers to inject arbitrary web script or HTML via t...

4.3CVSS5.8AI score0.01073EPSS
Exploits1References4Affected Software1
exploitpack
exploitpack
added 2008/01/07 12:0 a.m.10 views

eTicket 1.5.5.2 - search.php Multiple SQL Injections

eTicket 1.5.5.2 - search.php Multiple SQL Injections source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2008/01/07 12:0 a.m.14 views

eTicket 1.5.5.2 - admin.php Cross-Site Request Forgery

eTicket 1.5.5.2 - admin.php Cross-Site Request Forgery source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/01/07 12:0 a.m.24 views

eTicket 1.5.5.2 - 'admin.php' Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2008/01/07 12:0 a.m.23 views

eTicket 1.5.5.2 - 'search.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

7.4AI score
Exploits0
Rows per page
Query Builder