Lucene search
K

24 matches found

Positive Technologies
Positive Technologies
added 2018/01/24 12:0 a.m.3 views

PT-2018-17274

Name of the Vulnerable Software and Affected Versions: Flexible Poll version 1.2 Description: A SQL Injection issue exists, allowing exploitation via the id parameter to "mobile preview.php" or "index.php" API endpoints. Recommendations: For Flexible Poll version 1.2, avoid using the id parameter...

9.8CVSS5.9AI score0.1915EPSS
Exploits5References3
CNVD
CNVD
added 2016/10/11 12:0 a.m.1 views

Maian Weblog Cross-Site Request Forgery Vulnerability

Maian Weblog is a free and open source PHP blogging system developed by British software developer David Ian Bennett. The system includes modules for commenting, searching, uploading images and videos. A cross-site scripting vulnerability exists in the index.php script of Maian Weblog 4.0 and...

6.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2009/01/29 12:0 a.m.6 views

PT-2009-2988 · Ninja · Ninja Blog

Name of the Vulnerable Software and Affected Versions: Ninja Blog version 4.8 Description: The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in the entries/index.php file when magic quotes gpc is disabled. This is achieved by using a .. dot dot i...

4.3CVSS6.8AI score0.02562EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2002/12/31 12:0 a.m.4 views

PT-2002-2929 · Wsc · Web Server Creator - Web Portal

Name of the Vulnerable Software and Affected Versions: Web Server Creator - Web Portal WSC-WebPortal version 0.1 Description: The issue allows remote attackers to execute arbitrary PHP code. This can be achieved by providing a URL in the l parameter to customize.php or the pg parameter to...

7.5CVSS7.6AI score0.02055EPSS
Exploits1References9
Rows per page
Query Builder