Lucene search
K

4 matches found

NVD
NVD
added 2006/12/14 1:28 a.m.13 views

CVE-2006-6521

SQL injection vulnerability in lire-avis.php in Messageriescripthp 2.0 allows remote attackers to execute arbitrary SQL commands via the aa parameter...

7.5CVSS8.4AI score0.01044EPSS
Exploits1References4
CVE
CVE
added 2006/12/14 1:0 a.m.54 views

CVE-2006-6521

CVE-2006-6521 is a SQL injection vulnerability affecting lire-avis.php in Messageriescripthp 2.0. The underlying issue allows remote attackers to inject and execute arbitrary SQL commands via the aa parameter. Documented impact aligns with partial confidentiality, integrity, and availability conc...

7.5CVSS8.8AI score0.01044EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2006/12/14 1:0 a.m.42 views

CVE-2006-6520

The CVE-2006-6520 entry describes multiple XSS vulnerabilities in Messageriescripthp 2.0, allowing remote attackers to inject arbitrary script/HTML via parameters: pseudo to existepseudo.php, email to existeemail.php, and pageName or cssform to Contact/contact.php. NVD reports a CVSS v2 base scor...

6.8CVSS6AI score0.02126EPSS
Exploits1References6Affected Software1
Exploit DB
Exploit DB
added 2006/12/09 12:0 a.m.25 views

Messageriescripthp 2.0 - 'existepseudo.php?pseudo' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

7.4AI score
Exploits0
Rows per page
Query Builder