Lucene search
+L

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2013-5480

Malware in sbrugna...

7.5CVSS6.1AI score0.02387EPSS
Exploits6References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Gnew 2013.1 - Multiple Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
NVD
NVD
added 2014/04/15 11:13 p.m.28 views

CVE-2013-7368

Multiple cross-site scripting XSS vulnerabilities in Gnew 2013.1 allow remote attackers to inject arbitrary web script or HTML via the gnewtemplate parameter to 1 users/profile.php, 2 articles/index.php, or 3 admin/polls.php; 4 categoryid parameter to news/submit.php; newsid parameter to 5...

4.3CVSS5.8AI score0.03244EPSS
Exploits1References4
Prion
Prion
added 2014/04/15 11:13 p.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Gnew 2013.1 allow remote attackers to inject arbitrary web script or HTML via the gnewtemplate parameter to 1 users/profile.php, 2 articles/index.php, or 3 admin/polls.php; 4 categoryid parameter to news/submit.php; newsid parameter to 5...

4.3CVSS6AI score0.03244EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2014/04/15 5:0 p.m.32 views

CVE-2013-7368

Multiple cross-site scripting XSS vulnerabilities in Gnew 2013.1 allow remote attackers to inject arbitrary web script or HTML via the gnewtemplate parameter to 1 users/profile.php, 2 articles/index.php, or 3 admin/polls.php; 4 categoryid parameter to news/submit.php; newsid parameter to 5...

5.8AI score0.03244EPSS
Exploits1References4
CVE
CVE
added 2014/04/15 5:0 p.m.53 views

CVE-2013-7368

CVE-2013-7368 concerns multiple XSS vulnerabilities in Gnew 2013.1. The NVD entry states that remote attackers can inject arbitrary script/HTML via the gnew_template parameter across several pages (users/profile.php, articles/index.php, admin/polls.php; category_id for news/submit.php; news_id fo...

4.3CVSS5.9AI score0.03244EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2014/04/01 3:25 a.m.25 views

Sql injection

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 newsid parameter to news/send.php, 2 threadid parameter to posts/edit.php, or 3 useremail parameter to users/password.php or 4 users/register.php. NOTE: these issues were SPLIT...

7.5CVSS8.9AI score0.02683EPSS
Exploits7References7Affected Software1
NVD
NVD
added 2014/04/01 3:24 a.m.49 views

CVE-2013-5640

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 answerid or 2 questionid parameter to polls/vote.php, 3 storyid parameter to comments/add.php or 4 comments/edit.php, or 5 threadid parameter to posts/add.php. NOTE: this issue...

7.5CVSS8.3AI score0.02387EPSS
Exploits6References4
Prion
Prion
added 2014/04/01 3:24 a.m.27 views

Sql injection

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 answerid or 2 questionid parameter to polls/vote.php, 3 storyid parameter to comments/add.php or 4 comments/edit.php, or 5 threadid parameter to posts/add.php. NOTE: this issue...

7.5CVSS8.8AI score0.02683EPSS
Exploits7References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2014/04/01 3:24 a.m.2 views

CVE-2013-5640

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 answerid or 2 questionid parameter to polls/vote.php, 3 storyid parameter to comments/add.php or 4 comments/edit.php, or 5 threadid parameter to posts/add.php. NOTE: this issue...

7.5CVSS6.3AI score0.02683EPSS
Exploits7References5
Cvelist
Cvelist
added 2014/04/01 12:0 a.m.68 views

CVE-2013-5640

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 answerid or 2 questionid parameter to polls/vote.php, 3 storyid parameter to comments/add.php or 4 comments/edit.php, or 5 threadid parameter to posts/add.php. NOTE: this issue...

8.2AI score0.02387EPSS
Exploits6References4
Cvelist
Cvelist
added 2014/04/01 12:0 a.m.36 views

CVE-2013-7349

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 newsid parameter to news/send.php, 2 threadid parameter to posts/edit.php, or 3 useremail parameter to users/password.php or 4 users/register.php. NOTE: these issues were SPLIT...

8.3AI score0.02683EPSS
Exploits1References7
CVE
CVE
added 2014/04/01 12:0 a.m.71 views

CVE-2013-5640

Summary: CVE-2013-5640 (and related CVE-2013-7349) affect the Gnew 2013.1 application, with multiple SQL injection vectors. The vulnerabilities allow remote attackers to inject SQL via parameters in polls/vote.php (answer_id, question_id), comments/add.php (story_id) and comments/edit.php, or pos...

7.5CVSS8.4AI score0.02387EPSS
Exploits6References4Affected Software1
NVD
NVD
added 2014/03/11 7:37 p.m.25 views

CVE-2013-5639

Directory traversal vulnerability in users/login.php in Gnew 2013.1 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the gnewlanguage cookie...

7.5CVSS6.5AI score0.07149EPSS
Exploits5References3
Prion
Prion
added 2014/03/11 7:37 p.m.12 views

Directory traversal

Directory traversal vulnerability in users/login.php in Gnew 2013.1 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the gnewlanguage cookie...

7.5CVSS7AI score0.07149EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2014/03/11 3:0 p.m.37 views

CVE-2013-5639

Directory traversal vulnerability in users/login.php in Gnew 2013.1 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the gnewlanguage cookie...

6.5AI score0.07149EPSS
Exploits5References3
CVE
CVE
added 2014/03/11 3:0 p.m.72 views

CVE-2013-5639

CVE-2013-5639 is a directory traversal vulnerability in Gnew 2013.1 and earlier, where a remote attacker can read arbitrary files by exploiting the gnew_language cookie in the script at /users/login.php (directory traversal via ..). Connected sources corroborate the existence of this vulnerabilit...

7.5CVSS6.6AI score0.07149EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder