Lucene search
K

12 matches found

seebug.org
seebug.org
added 2015/10/16 12:0 a.m.20 views

GDL 4.2 gdl.php keyword Cross site scripting xss vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/10/16 12:0 a.m.14 views

GDL 4.2 download.php&main.php SQL Injection vulnerability

No description provided by source...

7.1AI score
Exploits0
Prion
Prion
added 2015/01/13 3:59 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in module/search/function.php in Ganesha Digital Library GDL 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action...

4.3CVSS6.1AI score0.03247EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2015/01/13 3:0 p.m.41 views

CVE-2014-100031

Ganesha Digital Library (GDL) version 4.2 is affected by multiple SQL injection vulnerabilities exploitable via the id parameter in download.php and main.php. The issue permits remote attackers to execute arbitrary SQL commands, with impacts stated as partial confidentiality, integrity, and avail...

7.5CVSS8.8AI score0.02348EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2015/01/13 3:0 p.m.18 views

CVE-2014-100030

Cross-site scripting XSS vulnerability in module/search/function.php in Ganesha Digital Library GDL 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action...

5.7AI score0.03247EPSS
Exploits1References3
CVE
CVE
added 2015/01/13 3:0 p.m.48 views

CVE-2014-100030

CVE-2014-100030 describes an XSS vulnerability in the Ganesha Digital Library (GDL) 4.2. The flaw is in the file module/search/function.php and allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action. The available sources indicate the affected s...

4.3CVSS5.8AI score0.03247EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2015/01/13 3:0 p.m.33 views

CVE-2014-100029

CVE-2014-100029 affects Ganesha Digital Library (GDL) 4.2. Multiple directory traversal vulnerabilities in class/session.php allow remote attackers to read arbitrary files via .. in the newlang or newtheme parameters, enabling partial confidentiality impact. The NVD entry confirms the flaw but do...

5CVSS7AI score0.07043EPSS
Exploits1References2Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

GDL 4.2 - Directory traversal vulnerability

No description provided by source...

7.1AI score
Exploits0
0day.today
0day.today
added 2014/02/28 12:0 a.m.19 views

GDL 4.2 - Multiple Vulnerabilities

GDL version 4.2 suffers from cross site scripting, remote SQL injection, and directory traversal vulnerabilities. - Title : GDL 4.2 Multiple Vulnerabilities - Down. Script : http://kmrg.itb.ac.id/ - http://kmrg.itb.ac.id/gdl42.zip - Author : ByEge - Home : http://byege.blogspot.com.tr/ - Tested :...

7.6AI score
Exploits0
exploitpack
exploitpack
added 2014/02/27 12:0 a.m.22 views

GDL 4.2 - Multiple Vulnerabilities

GDL 4.2 - Multiple Vulnerabilities - Title : GDL 4.2 Multiple Vulnerabilities - Down. Script : http://kmrg.itb.ac.id/ - http://kmrg.itb.ac.id/gdl42.zip - Author : ByEge - Home : http://byege.blogspot.com.tr/ - Tested : Apache/2.2.22 Win32 PHP/5.4.3 - Date : 26/02/2014 - Google Dork : "Powered by...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2014/02/27 12:0 a.m.31 views

GDL 4.2 - Multiple Vulnerabilities

Title : GDL 4.2 Multiple Vulnerabilities - Down. Script : http://kmrg.itb.ac.id/ - http://kmrg.itb.ac.id/gdl42.zip - Author : ByEge - Home : http://byege.blogspot.com.tr/ - Tested : Apache/2.2.22 Win32 PHP/5.4.3 - Date : 26/02/2014 - Google Dork : "Powered by GDL 4.2" And "gdl.php?mod=browse" -...

7AI score
Exploits0
CVE
CVE
added 2009/03/19 10:0 a.m.41 views

CVE-2009-0965

CVE-2009-0965 concerns a SQL injection in Ganesha Digital Library (GDL) versions 4.0 and 4.2. The vulnerability affects functions/browse.php and can be triggered via the node parameter in a browse action to gdl.php, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists ...

7.5CVSS8.7AI score0.01018EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder