CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artistid parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the...

4.3CVSS6.2AI score0.00263EPSS

Exploits0References1

0day.today•added 2018/05/29 12:0 a.m.•25 views

Lyrist - id SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Lyrist - Music Lyrics Script - SQL Injection Exploit Author: Meisam Monsef - email protected - @meisamrce Vendor Homepage: https://www.codester.com/items/7250/lyrist-music-lyrics-script Version: All Version Exploit :...

0.2AI score

Exploits0

exploitpack•added 2018/05/27 12:0 a.m.•12 views

Lyrist - id SQL Injection

Lyrist - id SQL Injection Exploit Title: Lyrist - Music Lyrics Script - SQL Injection Date: 2018-05-26 Exploit Author: Meisam Monsef - [email protected] - @meisamrce Vendor Homepage: https://www.codester.com/items/7250/lyrist-music-lyrics-script Version: All Version Exploit :...

0.1AI score

Exploits0

Packet Storm•added 2018/05/27 12:0 a.m.•21 views

Lyrist SQL Injection

Exploit Title: Lyrist - Music Lyrics Script - SQL Injection Date: 2018-05-26 Exploit Author: Meisam Monsef - [email protected] - @meisamrce Vendor Homepage: https://www.codester.com/items/7250/lyrist-music-lyrics-script Version: All Version Exploit :...

0.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•15 views

Lyrics Script 'search_results.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31437/info Lyrics Script is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser o...

7.1AI score

Exploits0

Prion•added 2010/07/13 6:30 p.m.•11 views

Cross site scripting

4.3CVSS6.5AI score0.00263EPSS

Exploits0References1Affected Software1

CVE•added 2010/07/13 6:0 p.m.•39 views

CVE-2010-2721

CVE-2010-2721 affects RightInPoint Lyrics Script 3.0. The vulnerability is a SQL injection in index.php via the artist_id parameter in an addalbum action, allowing remote attackers to execute arbitrary SQL commands. This is documented in multiple sources (e.g., NVD entry). The provided connected ...

7.5CVSS8.7AI score0.01422EPSS

Exploits1References7Affected Software1

CVE•added 2010/07/13 6:0 p.m.•41 views

CVE-2010-2722

CVE-2010-2722 describes an XSS vulnerability in RightInPoint Lyrics Script 3.0 (index.php) where the attacker can inject arbitrary script via the artist_id parameter, due to inadequate handling of data in a forced SQL error message. The affected component is the web interface’s index.php for Lyri...

4.3CVSS6.1AI score0.00263EPSS

Exploits0References1Affected Software1

Cvelist•added 2010/07/13 6:0 p.m.•13 views

CVE-2010-2721

SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artistid parameter in an addalbum action...

8.3AI score0.01422EPSS

Exploits1References7

Packet Storm•added 2010/06/16 12:0 a.m.•26 views

Lyrics Script Cross Site Scripting / SQL Injection

Exploit Title: Lyrics Script SQL Injection and Cross-Site Scripting Vulnerabilities Date: 14.06.2010 Author: Valentin Category: webapps/0day Version: unknown Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...

0.2AI score

Exploits0

0day.today•added 2010/06/14 12:0 a.m.•43 views

Lyrics Script SQL Injection and XSS Vulnerabilities

Exploit for php platform in category web applications =================================================== Lyrics Script SQL Injection and XSS Vulnerabilities =================================================== :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: Gener...

7.1AI score

Exploits0

Exploit DB•added 2010/06/14 12:0 a.m.•21 views

Lyrics Script - SQL Injection / Cross-Site Scripting

:::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Lyrics Script SQL Injection and Cross-Site Scripting Vulnerabilities Author = Valentin Hoebel Contact = [email protected] :::::::::::::::::::::::::::::::::::::: 0x2...

7.4AI score

Exploits0

exploitpack•added 2010/06/14 12:0 a.m.•15 views

Lyrics Script - SQL Injection Cross-Site Scripting

Lyrics Script - SQL Injection Cross-Site Scripting :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Lyrics Script SQL Injection and Cross-Site Scripting Vulnerabilities Author = Valentin Hoebel Contact =...

0.2AI score

Exploits0

NVD•added 2008/10/22 10:30 a.m.•8 views

CVE-2008-4672

Cross-site scripting XSS vulnerability in searchresults.php in buymyscripts Lyrics Script allows remote attackers to inject arbitrary web script or HTML via the k parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.6AI score0.00305EPSS

Exploits0References3

Cvelist•added 2008/10/22 10:0 a.m.•12 views

CVE-2008-4672

5.6AI score0.00305EPSS

Exploits0References3

CVE•added 2008/10/22 10:0 a.m.•43 views

CVE-2008-4672

CVE-2008-4672 is a cross-site scripting (XSS) flaw in the buymyscripts Lyrics Script, specifically in search_results.php where an attacker can inject arbitrary script/HTML via the k parameter. The connected documents confirm the vulnerable component and parameter, but do not provide concrete deta...

4.3CVSS5.6AI score0.00305EPSS

Exploits0References3Affected Software1

Exploit DB•added 2008/09/27 12:0 a.m.•26 views

Lyrics Script - 'search_results.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/31437/info Lyrics Script is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by