10 matches found
EUVD-2007-3055
Malware in sbrugna...
EUVD-2007-3056
Malware in sbrugna...
CVE-2007-3063
SQL injection vulnerability in diary.php in My Databook allows remote attackers to execute arbitrary SQL commands via the delete parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter...
CVE-2007-3064
Cross-site scripting XSS vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter...
Sql injection
SQL injection vulnerability in diary.php in My Databook allows remote attackers to execute arbitrary SQL commands via the delete parameter...
CVE-2007-3064
Cross-site scripting XSS vulnerability in diary.php in My Databook allows remote attackers to inject arbitrary web script or HTML via the year parameter...
CVE-2007-3064
CVE-2007-3064 affects My Databook’s diary.php with a stored/reflected XSS via the year parameter. Multiple sources (NVD, CVE listings, PRION/CVELIST) confirm the impact as arbitrary script execution by remote attackers; no concrete remediation or fixed version is stated in the provided documents....
CVE-2007-3063
CVE-2007-3063 is an SQL injection vulnerability in diary.php of the application My Databook . The flaw allows remote attackers to send a crafted value in the delete parameter to execute arbitrary SQL commands, exposing data and potentially compromising integrity/availability. Documents confirm th...
CVE-2007-3063
SQL injection vulnerability in diary.php in My Databook allows remote attackers to execute arbitrary SQL commands via the delete parameter...