CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2004-1834

Malware in sbrugna...

7.5CVSS6.4AI score0.00584EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2004-1833

Malware in sbrugna...

4.3CVSS6.4AI score0.00023EPSS

Exploits1References4

CVE•added 2005/05/10 4:0 a.m.•35 views

CVE-2004-1841

CVE-2004-1841 concerns a SQL injection in MS Analysis module 2.0 for PHP-Nuke, allowing remote attackers to execute arbitrary SQL via the Referer header in an HTTP request. The available documents identify the affected component and the general vulnerability class but do not provide version-speci...

7.5CVSS8.6AI score0.00584EPSS

Exploits1References3Affected Software1

Cvelist•added 2005/05/10 4:0 a.m.•14 views

CVE-2004-1841

SQL injection vulnerability in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to execute arbitrary SQL via the referer field in an HTTP request...

8.2AI score0.00584EPSS

Exploits1References3

CVE•added 2005/05/10 4:0 a.m.•42 views

CVE-2004-1840

CVE-2004-1840 affects the MS Analysis module 2.0 for PHP-Nuke. The vulnerability is multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary JavaScript/HTML via (1) screen parameter to modules.php, (2) module_name parameter to title.php, (3) sortby parameter to mo...

4.3CVSS6.1AI score0.00023EPSS

Exploits1References3Affected Software1

Cvelist•added 2005/05/10 4:0 a.m.•14 views

CVE-2004-1840

Multiple cross-site scripting XSS vulnerabilities in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the 1 screen parameter to modules.php, 2 modulename parameter to title.php, 3 sortby parameter to modules.php, or 4 overview parameter to...

5.8AI score0.00023EPSS

Exploits1References3

CVE•added 2005/05/10 4:0 a.m.•54 views

CVE-2004-1839

MS Analysis module 2.0 for PHP-Nuke exposes full path disclosure via direct requests to browsers.php, mstrack.php, or title.php, enabling Information Disclosure without user interaction. Root cause: PHP error messages reveal filesystem paths. The provided documents do not specify a patched versio...

5CVSS6.6AI score0.00016EPSS

Exploits0References2Affected Software1

NVD•added 2004/12/31 5:0 a.m.•8 views

CVE-2004-1841

SQL injection vulnerability in MS Analysis module 2.0 for PHP-Nuke allows remote attackers to execute arbitrary SQL via the referer field in an HTTP request...

7.5CVSS8.2AI score0.00584EPSS

Exploits1References3

NVD•added 2004/03/22 5:0 a.m.•10 views

CVE-2004-1840

4.3CVSS5.8AI score0.00023EPSS

Exploits1References3

NVD•added 2004/03/22 5:0 a.m.•10 views

CVE-2004-1839

MS Analysis module 2.0 for PHP-Nuke allows remote attackers to obtain sensitive information via a direct request to 1 browsers.php, 2 mstrack.php, or 3 title.php, which reveal the full path in a PHP error message...

5CVSS6.3AI score0.00016EPSS

Exploits0References2

exploitpack•added 2004/03/22 12:0 a.m.•9 views

PHP-Nuke MS-Analysis Module - HTTP Referrer Field SQL Injection

PHP-Nuke MS-Analysis Module - HTTP Referrer Field SQL Injection source: https://www.securityfocus.com/bid/9948/info Reportedly the MS-Analysis module is prone to a remote SQL injection vulnerability. This issue is due to a failure to properly sanitize user supplied HTTP header input before using ...

0.6AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by