Lucene search
+L

115 matches found

Prion
Prion
added 2008/02/13 8:0 p.m.16 views

Sql injection

SQL injection vulnerability in calendar.php in Virtual War VWar 1.5 allows remote attackers to execute arbitrary SQL commands via the month parameter...

7.5CVSS9.1AI score0.00961EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2008/01/23 10:0 p.m.10 views

Sql injection

SQL injection vulnerability in blog.php in Mooseguy Blog System MGBS 1.0 allows remote attackers to execute arbitrary SQL commands via the month parameter...

7.5CVSS9.1AI score0.00967EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2008/01/23 9:0 p.m.18 views

CVE-2008-0424

SQL injection vulnerability in blog.php in Mooseguy Blog System MGBS 1.0 allows remote attackers to execute arbitrary SQL commands via the month parameter...

8.4AI score0.00967EPSS
Exploits1References4
exploitpack
exploitpack
added 2008/01/21 12:0 a.m.33 views

Mooseguy Blog System 1.0 - month SQL Injection

Mooseguy Blog System 1.0 - month SQL Injection MGBS 1.0 Remote SQL injection Script url http://sourceforge.net/project/showfiles.php?groupid=193233 Vulnerable code in blog.php ?php $month = $GET'month'; $result = mysqlquery"SELECT FROM blog WHERE posted='$month' ORDER BY id DESC" or die"HELP QUER...

8.6AI score
Exploits0
Prion
Prion
added 2007/12/15 1:46 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in modules/ecal/display.php in the Event Calendar in bcoos 1.0.10 allows remote attackers to inject arbitrary web script or HTML via the month parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

4.3CVSS5.8AI score0.01073EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2007/06/11 11:30 p.m.17 views

Sql injection

Multiple SQL injection vulnerabilities in archives.php in Particle Blogger 1.2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the month parameter and other unspecified vectors...

7.5CVSS9.3AI score0.01058EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/05/29 8:30 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in mods.php in GTP GNUTurk Portal System 3G allows remote attackers to inject arbitrary web script or HTML via the month parameter...

4.3CVSS6.1AI score0.01534EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/05/29 8:0 p.m.23 views

CVE-2007-2879

Cross-site scripting XSS vulnerability in mods.php in GTP GNUTurk Portal System 3G allows remote attackers to inject arbitrary web script or HTML via the month parameter...

5.7AI score0.01534EPSS
Exploits0References5
NVD
NVD
added 2006/07/25 1:22 p.m.11 views

CVE-2006-3821

Multiple cross-site scripting XSS vulnerabilities in ATutor 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the 1 lang parameter in a indexlist.php and 2 year, 3 month, and 4 day parameter in b registration.php...

4.3CVSS5.8AI score0.01325EPSS
Exploits1References6
OSV
OSV
added 2006/07/21 2:3 p.m.1 views

DEBIAN-CVE-2006-3682

awstats.pl in AWStats 6.5 build 1.857 and earlier allows remote attackers to obtain the installation path via the 1 year, 2 pluginmode or 3 month parameters...

5CVSS7AI score0.09545EPSS
Exploits1References1
Prion
Prion
added 2006/03/21 2:6 a.m.15 views

Sql injection

SQL injection vulnerability in events.php in Maian Events 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters...

7.5CVSS9AI score0.01381EPSS
Exploits1References7Affected Software1
Prion
Prion
added 2006/02/19 11:2 a.m.8 views

Directory traversal

Directory traversal vulnerability in weblog.pl in PerlBlog 1.09b and earlier allows remote attackers to read certain files via the month parameter...

5CVSS7AI score0.01812EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2006/01/21 12:3 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 month or 2 year parameter to index.php...

4.3CVSS5.9AI score0.01164EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2006/01/21 12:0 a.m.18 views

CVE-2006-0333

Cross-site scripting XSS vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 month or 2 year parameter to index.php...

5.6AI score0.01164EPSS
Exploits0References3
Prion
Prion
added 2006/01/18 12:7 a.m.10 views

Sql injection

SQL injection vulnerability in index.php in microBlog 2.0 RC-10 allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters...

7.5CVSS9.1AI score0.0186EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder