CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

NVD•added 2008/04/27 6:5 p.m.•8 views

CVE-2008-1968

Multiple SQL injection vulnerabilities in Cezanne 7 allow remote authenticated users to execute arbitrary SQL commands via the FUNID parameter to 1 CFLookup.asp and 2 CznCommon/CznCustomContainer.asp...

6CVSS8.1AI score0.00514EPSS

Exploits1References5

CVE•added 2008/04/27 6:0 p.m.•39 views

CVE-2008-1968

CVE-2008-1968 affects Cezanne 7 with multiple SQL injection flaws exploitable via the FUNID parameter in CFLookup.asp and CznCommon/CznCustomContainer.asp. The underlying issue is unsafely constructed SQL from the FUNID input, enabling remote authenticated users to execute arbitrary SQL commands....

6CVSS8.1AI score0.00514EPSS

Exploits1References5Affected Software1

securityvulns•added 2008/04/15 12:0 a.m.•120 views

S21SEC-043-en:Cezanne SW Blind SQL Injection

S21Sec Advisory - Title: Cezanne SW login required Blind SQL Injection ID: S21SEC-043-en Severity: High History: 02.Jan.2008 Vulnerability discovered Authors: Juan de la Fuente Costa [email protected] Fco Javier Puerta Rubio [email protected] URL: http://www.s21sec.com/avisos/s21sec-43-en.txt...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by