CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

NVD•added 2007/06/20 9:30 p.m.•7 views

CVE-2007-3290

categoria.php in LiveCMS 3.4 and earlier allows remote attackers to obtain sensitive information via a ' quote character in the cid parameter, which reveals the path in a forced SQL error message...

9.3CVSS6.6AI score0.06117EPSS

Exploits0References5

NVD•added 2007/06/20 9:30 p.m.•11 views

CVE-2007-3292

Unrestricted file upload vulnerability in LiveCMS 3.4 and earlier allows remote attackers to upload and execute arbitrary PHP code by specifying a PHP file type in a parameter intended for "a small image" associated with an article...

7.5CVSS7.6AI score0.06244EPSS

Exploits0References4

NVD•added 2007/06/20 9:30 p.m.•11 views

CVE-2007-3293

SQL injection vulnerability in categoria.php in LiveCMS 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter...

7.5CVSS8.4AI score0.01295EPSS

Exploits0References7

Prion•added 2007/06/20 9:30 p.m.•11 views

Cross site scripting

Cross-site scripting XSS vulnerability in LiveCMS 3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via an article name, possibly involving the titulo parameter in article.php...

4.3CVSS6.3AI score0.04287EPSS

Exploits0References5Affected Software1

Cvelist•added 2007/06/20 9:0 p.m.•12 views

CVE-2007-3292

7.6AI score0.06244EPSS

Exploits0References4

Cvelist•added 2007/06/20 9:0 p.m.•16 views

CVE-2007-3293

SQL injection vulnerability in categoria.php in LiveCMS 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter...

8.4AI score0.01295EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by