Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5248

Malware in sbrugna...

4.3CVSS6.4AI score0.01524EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5249

Malware in sbrugna...

4CVSS6.4AI score0.05618EPSS
Exploits0References6
NVD
NVD
added 2008/11/28 7:0 p.m.16 views

CVE-2008-5271

Cross-site scripting XSS vulnerability in index.php in Fred Stuurman SyndeoCMS 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

4.3CVSS5.7AI score0.01524EPSS
Exploits0References4
Prion
Prion
added 2008/11/28 7:0 p.m.12 views

Directory traversal

Multiple directory traversal vulnerabilities in Fred Stuurman SyndeoCMS 2.6.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the template parameter to 1 starnet/editors/fckeditor/studenteditor.php; 2 starnet/modules/snnews/editcontent.php, reached through...

4CVSS7AI score0.05618EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2008/11/28 7:0 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Fred Stuurman SyndeoCMS 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

4.3CVSS6.1AI score0.01524EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/11/28 6:26 p.m.24 views

CVE-2008-5271

Cross-site scripting XSS vulnerability in index.php in Fred Stuurman SyndeoCMS 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

5.7AI score0.01524EPSS
Exploits0References4
CVE
CVE
added 2008/11/28 6:26 p.m.49 views

CVE-2008-5271

CVE-2008-5271 describes a Cross-site scripting (XSS) vulnerability in the SyndeoCMS 2.6.0 package (index.php) where the section parameter can be exploited to inject arbitrary web script/HTML. The cited sources confirm the vulnerability exists in SyndeoCMS 2.6.0 and indicate remote exploitation po...

4.3CVSS5.7AI score0.01524EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2007/11/06 9:46 p.m.13 views

CVE-2007-5840

PHP remote file inclusion vulnerability in starnet/themes/c-sky/main.inc.php in Fred Stuurman SyndeoCMS 2.5.01 allows remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter, a different vector than CVE-2006-4920.2...

6.8CVSS7.4AI score0.03178EPSS
Exploits0References7
CVE
CVE
added 2007/11/06 9:0 p.m.41 views

CVE-2007-5840

The CVE-2007-5840 entry concerns SyndeoCMS 2.5.01 (Fred Stuurman) with a PHP remote file inclusion flaw in starnet/themes/c-sky/main.inc.php. The underlying issue is an insecure cmsdir parameter that allows including a URL, enabling remote attackers to execute arbitrary PHP code. This vector is d...

6.8CVSS7.4AI score0.03178EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder