CVE-2025-62614

BookLore is a self-hosted web app for organizing and managing personal book collections. In versions 1.8.1 and prior, an authentication bypass vulnerability in the BookMediaController allows any unauthenticated user to access and download book covers, thumbnails, and complete PDF/CBX page content...

EUVD-2006-2833

Malware in sbrugna...

EUVD-2005-3983

Malware in sbrugna...

EUVD-2008-3340

Malware in sbrugna...

lore-seichter-murath.de Cross Site Scripting vulnerability OBB-2700328

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Lore 1.5.4/1.5.6 'article.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15665/info Lore is prone to an SQL injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...

Lore 1.5.6 SQL Injection

Lore 1.5.6 Bug : article.php?id=Blind ,Comentarios Habilitados "Add Comment" Dork : intext:"Powered by Lore 1.5.6" Coded By OzXNuKE/US HTTP://FORO.UNDERSECURITY.NET HTTP://FORO.EL-HACKER.COM Gracias C1c4tr1z,Tecn0x,Lix,1995,N0b0dy,NanonRoses,Codebreak?,Nork,AzraelNuKE && Todos los Miembros de...

Lore 1.5.6 (article.php) Blind SQL Injection Exploit

No description provided by source. ? / CURL HABILITADO Blind Sql Injections Script Version : Lore 1.5.6 Bug : article.php?id=Blind ,Comentarios Habilitados "Add Comment" Dork : intext:"Powered by Lore 1.5.6" Coded By OzXNuKE/US HTTP://FORO.UNDERSECURITY.NET HTTP://FORO.EL-HACKER.COM Gracias...

Lore 1.5.6 (article.php) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================== Lore 1.5.6 article.php Blind SQL Injection Exploit ==================================================== Lore 1.5.6 Bug : article.php?id=Blind ,Comentarios Habilitados "Add Comment" Dork ...

Lore 1.5.6 - article.php Blind SQL Injection

Lore 1.5.6 - article.php Blind SQL Injection Lore 1.5.6 Bug : article.php?id=Blind ,Comentarios Habilitados "Add Comment" Dork : intext:"Powered by Lore 1.5.6" Coded By OzXNuKE/US HTTP://FORO.UNDERSECURITY.NET HTTP://FORO.EL-HACKER.COM Gracias...

Lore 1.5.6 - 'article.php' Blind SQL Injection

Lore 1.5.6 Bug : article.php?id=Blind ,Comentarios Habilitados "Add Comment" Dork : intext:"Powered by Lore 1.5.6" Coded By OzXNuKE/US HTTP://FORO.UNDERSECURITY.NET HTTP://FORO.EL-HACKER.COM Gracias C1c4tr1z,Tecn0x,Lix,1995,N0b0dy,NanonRoses,Codebreak?,Nork,AzraelNuKE && Todos los Miembros de...

CVE-2008-3353

Multiple cross-site scripting XSS vulnerabilities in Pure Software Lore before 1.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the 1 article comments feature and the 2 search log feature...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Pure Software Lore before 1.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the 1 article comments feature and the 2 search log feature...

CVE-2008-3353

CVE-2008-3353 affects Pure Software Lore, prior to version 1.7.0. The Connected PT-2008-4758 entry documents multiple cross-site scripting (XSS) vulnerabilities in the article comments feature and the search log feature, allowing remote attackers to inject arbitrary web script or HTML. Root cause...

CVE-2008-3353

Multiple cross-site scripting XSS vulnerabilities in Pure Software Lore before 1.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the 1 article comments feature and the 2 search log feature...

CVE-2007-2021

Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...

CVE-2007-2021

Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...

CVE-2007-2021

Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...

CVE-2007-2021

CVE-2007-2021: Multiple PHP remote file inclusion flaws in Pineapple Technologies Lore 1 permit remote code execution via crafted URLs in the lang_path parameter of third_party/phpmailer/class.phpmailer.php or the get_plugin_file_path parameter of third_party/smarty/libs/plugins/function.html_che...