Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Tenable Nessus
Tenable Nessusadded 2007/06/14 12:0 a.m.39 views

XOOPS XFSection Module modify.php dir_module Parameter Remote File Inclusion

The remote host is running XFSection, a third-party module for XOOPS. The version of this module installed on the remote host fails to sanitize input to the 'dirmodule' parameter of the 'modify.php' script before using it to include PHP code. Regardless of PHP's 'registerglobals' setting, an...

7.5CVSS6AI score0.04147EPSS
Exploits1References1
Prion
Prionadded 2007/04/11 10:19 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin/modify.php in Sam Crew MyBlog remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS6.1AI score0.00297EPSS
Exploits0References2
Cvelist
Cvelistadded 2007/04/11 10:0 a.m.18 views

CVE-2007-1969

Cross-site scripting XSS vulnerability in admin/modify.php in Sam Crew MyBlog remote attackers to inject arbitrary web script or HTML via the id parameter...

5.7AI score0.00297EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2007/01/20 12:0 a.m.12730 views

indexu-xss.txt

vulnerability script indexu all versions Found by :SwEET-DeViL & viP HaCkEr & HaCkEr sUn TeaM AL-GaRNi Application : indexu version : all versions URL : http://www.nicecoder.com/ google : "Powered by INDEXU 5." Exploits : |//1\| in upgrade.php...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/01/17 12:0 a.m.15501 views

vulnerability script indexu all versions

vulnerability script indexu all versions Found by :SwEET-DeViL & viP HaCkEr & HaCkEr sUn TeaM AL-GaRNi Application : indexu version : all versions URL : http://www.nicecoder.com/ google : "Powered by INDEXU 5." Exploits : |//1| in upgrade.php...

0.3AI score
Exploits0
Cvelist
Cvelistadded 2006/09/13 11:0 p.m.16 views

CVE-2006-4767

Multiple directory traversal vulnerabilities in Stefan Ernst Newsscript aka WM-News 0.5beta allow remote attackers to 1 read arbitrary local files via a .. dot dot sequence in the ide parameter in modify.php and 2 write to arbitrary local files via a .. sequence in the var parameter in addgo.php...

6.6AI score0.00522EPSS
Exploits0References5
CVE
CVEadded 2006/09/13 11:0 p.m.36 views

CVE-2006-4767

The CVE-2006-4767 entry concerns Stefan Ernst Newsscript (aka WM-News) 0.5beta. The described vulnerabilities are directory traversal flaws caused by improper handling of a .. sequence: (1) in modify.php with the ide parameter could allow reading arbitrary local files, and (2) in add_go.php with ...

6.4CVSS6.9AI score0.00522EPSS
Exploits0References5Affected Software1
Packet Storm
Packet Stormadded 2006/07/26 12:0 a.m.31 views

mospray.txt

Kurdish Security MoSpray Remote File Include Vulnerability Original Advisory : http://kurdishsecurity.blogspot.com/2006/07/kurdish-security-14-mospray-basedir.html Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : MoSpray Site :...

7.4AI score
Exploits0
Rows per page
Query Builder