Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6582

Malware in sbrugna...

4.3CVSS6.4AI score0.01497EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-4657

Malware in sbrugna...

7.5CVSS6.4AI score0.02304EPSS
Exploits1References5
Prion
Prion
added 2010/03/10 10:30 p.m.13 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in GraFX MiniCWB 2.3.0 allow remote attackers to execute arbitrary PHP code via a URL in the LANG parameter to 1 en.inc.php, 2 hu.inc.php, 3 no.inc.php, 4 ro.inc.php, and 5 ru.inc.php in language/...

7.5CVSS8.2AI score0.02304EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2010/03/10 10:30 p.m.18 views

CVE-2009-4693

Multiple PHP remote file inclusion vulnerabilities in GraFX MiniCWB 2.3.0 allow remote attackers to execute arbitrary PHP code via a URL in the LANG parameter to 1 en.inc.php, 2 hu.inc.php, 3 no.inc.php, 4 ro.inc.php, and 5 ru.inc.php in language/...

7.5CVSS7.7AI score0.02304EPSS
Exploits1References4
Cvelist
Cvelist
added 2010/03/10 10:0 p.m.25 views

CVE-2009-4693

Multiple PHP remote file inclusion vulnerabilities in GraFX MiniCWB 2.3.0 allow remote attackers to execute arbitrary PHP code via a URL in the LANG parameter to 1 en.inc.php, 2 hu.inc.php, 3 no.inc.php, 4 ro.inc.php, and 5 ru.inc.php in language/...

7.7AI score0.02304EPSS
Exploits1References4
CVE
CVE
added 2010/03/10 10:0 p.m.54 views

CVE-2009-4693

GraFX MiniCWB 2.3.0 is affected by multiple PHP remote file inclusion vulnerabilities that allow remote code execution via a URL in the LANG parameter targeting language/en.inc.php, language/hu.inc.php, language/no.inc.php, language/ro.inc.php, and language/ru.inc.php. The root cause is unsafe in...

7.5CVSS7.9AI score0.02304EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2009/04/06 6:30 p.m.15 views

CVE-2008-6620

Multiple cross-site scripting XSS vulnerabilities in javascript/editor/editor/filemanager/browser/mcpuk/connectors/php/connector.php in GraFX miniCWB 2.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 errcontext, 2 GET, 3 POST, 4 SESSION, 5 SERVER, and 6...

4.3CVSS5.8AI score0.01497EPSS
Exploits1References5
Cvelist
Cvelist
added 2009/04/06 6:0 p.m.19 views

CVE-2008-6620

Multiple cross-site scripting XSS vulnerabilities in javascript/editor/editor/filemanager/browser/mcpuk/connectors/php/connector.php in GraFX miniCWB 2.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 errcontext, 2 GET, 3 POST, 4 SESSION, 5 SERVER, and 6...

5.8AI score0.01497EPSS
Exploits1References5
CVE
CVE
added 2009/04/06 6:0 p.m.39 views

CVE-2008-6620

GraFX miniCWB 2.1.1 and earlier are affected by CVE-2008-6620: multiple XSS vulnerabilities in javascript/editor/editor/filemanager/browser/mcpuk/connectors/php/connector.php. The issue allows remote attackers to inject arbitrary web script or HTML through (1) errcontext, (2) _GET, (3) _POST, (4)...

4.3CVSS5.9AI score0.01497EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder