Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

seebug.org
seebug.orgadded 2009/12/25 12:0 a.m.10 views

phpwind 2.0.1 hidden.php 代码执行漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2008/10/27 12:0 a.m.16 views

PHPWind hidden.php脚本代码注入漏洞

PHPWind实现上存在输入验证漏洞,远程攻击者可能利用此漏洞在主机上以Web进程权限执行任意命令。 PHPWind的job.php及hidden.php脚本对用户提交的参数值未做充分的过滤检查,远程攻击者可以注入PHP脚本代码到文件中,攻击者以Web进程权限执行任意命令。 PHPWind 2.0.1 PHPWind ------- 目前厂商已经在最新版本的软件中修复了这个安全问题,请到厂商的主页下载: http://www.phpwind.net/...

7.1AI score
Exploits0
Prion
Prionadded 2007/09/11 6:17 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via 1 the val parameter to alphabet.php in an alpha.albums action, or the PATHINFO to 2 random.php or 3 admin/hidden.php...

4.3CVSS6.1AI score0.00435EPSS
Exploits1References7Affected Software1
NVD
NVDadded 2007/09/11 6:17 p.m.9 views

CVE-2007-4811

Multiple cross-site scripting XSS vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via 1 the val parameter to alphabet.php in an alpha.albums action, or the PATHINFO to 2 random.php or 3 admin/hidden.php...

4.3CVSS5.8AI score0.00435EPSS
Exploits1References7
CVE
CVEadded 2007/09/11 6:0 p.m.47 views

CVE-2007-4811

CVE-2007-4811 concerns multiple cross-site scripting (XSS) vulnerabilities in Netjuke 1.0-rc2. The affected entry indicates that remote attackers can inject arbitrary web script or HTML via (1) the val parameter to alphabet.php in an alpha.albums action, or (2) the PATH_INFO to random.php, or (3)...

4.3CVSS5.8AI score0.00435EPSS
Exploits1References7Affected Software1
Cvelist
Cvelistadded 2007/09/11 6:0 p.m.18 views

CVE-2007-4811

Multiple cross-site scripting XSS vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via 1 the val parameter to alphabet.php in an alpha.albums action, or the PATHINFO to 2 random.php or 3 admin/hidden.php...

5.8AI score0.00435EPSS
Exploits1References7
Rows per page
Query Builder