Lucene search
K

25 matches found

EUVD
EUVD
added 2026/02/03 4:52 p.m.6 views

EUVD-2020-30984

60CycleCMS 2.5.2 contains a cross-site scripting XSS vulnerability in news.php that allows attackers to inject malicious scripts through GET parameters. Attackers can craft malicious URLs with XSS payloads targeting the 'etsu' and 'ltsu' parameters to execute arbitrary scripts in victim's browser...

6.1CVSS5.7AI score0.00255EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/03 4:52 p.m.4 views

EUVD-2020-30985

60CycleCMS 2.5.2 contains an SQL injection vulnerability in news.php and common/lib.php that allows attackers to manipulate database queries through unvalidated user input. Attackers can exploit vulnerable query parameters like 'title' to inject malicious SQL code and potentially extract or modif...

8.8CVSS5.2AI score0.00349EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.13 views

60CycleCMS 跨站脚本漏洞

60CycleCMS is an open-source content management system developed by 60CycleCMS. Version 2.5.2 of 60CycleCMS contains a cross-site scripting vulnerability. This vulnerability stems from the etsu and ltsu parameters in the news.php file, which allow cross-site scripting attacks. This could enable...

6.1CVSS5.9AI score0.00255EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-1034

Malware in sbrugna...

9.3CVSS6.4AI score0.05539EPSS
Exploits0References6
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

Online Course Registration /news.php File SQL Injection Vulnerability

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...

9.8CVSS8.3AI score0.00478EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/16 12:0 a.m.5 views

PHPGurukul Online Course Registration 注入漏洞

Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...

9.8CVSS8.2AI score0.00478EPSS
Exploits1References7
NVD
NVD
added 2025/02/25 10:15 p.m.25 views

CVE-2025-25521

Seacms =13.3 is vulnerable to SQL Injection in admintypenews.php...

9.8CVSS0.00482EPSS
Exploits1References1
OSV
OSV
added 2021/06/25 2:43 p.m.6 views

MGASA-2021-0286 Updated graphicsmagick packages fix security vulnerabilities

Updated graphicsmagick packages fix security vulnerabilities: The graphicsmagick package has been updated to version 1.3.36, fixing several security issues and other bugs. See the upstream NEWS file for details...

7.4AI score
Exploits0References3
Mageia
Mageia
added 2021/02/06 6:20 p.m.38 views

Updated gdisk package fixes security vulnerabilities

A bug that could cause segfault if GPT header claimed partition entries are oversized CVE-2020-0256. A bug that could cause a crash if a badly-formatted MBR disk was read CVE-2021-0308. The gdisk package has been updated to version 1.0.6, fixing these issues and several other bugs. See the upstre...

7.2CVSS2.2AI score0.00436EPSS
Exploits0References2
OSV
OSV
added 2018/10/29 12:29 p.m.4 views

CVE-2018-18789

An issue was discovered in zzcms 8.3. SQL Injection exists in zt/top.php via a Host HTTP header to zt/news.php...

9.8CVSS5.8AI score0.01202EPSS
Exploits1References1
Mageia
Mageia
added 2016/05/21 10:11 p.m.30 views

Updated networkmanager packages fix CVE-2016-0764

Updated networkmanager package fixes security vulnerability: NetworkManager before 1.0.12 is vulnerable to a race condition that could lead to a local information leak CVE-2016-0764. The networkmanager package has been updated to version 1.0.12, which fixes this issue and several other bugs. See...

6.2CVSS3.1AI score0.00264EPSS
Exploits0References4
Mageia
Mageia
added 2016/05/07 9:19 a.m.15 views

Updated vlc packages fix security vulnerability

Updated vlc packages fix security vulnerabilities: The vlc package has been updated to version 2.2.3, which fixes several bugs and possible security issues. See the NEWS file for details...

3.5AI score
Exploits0References2
Mageia
Mageia
added 2016/02/26 9:45 p.m.21 views

Updated vlc packages fix security vulnerabilities

Updated vlc packages fix security vulnerabilities: The vlc package has been updated to version 2.2.2, which fixes several bugs and possible security issues. See the NEWS file for details...

3.5AI score
Exploits0References2
Mageia
Mageia
added 2016/01/15 1:52 a.m.35 views

Updated librsvg packages fix security vulnerability

Out-of-bounds heap read in librsvg2 was found when parsing SVG file CVE-2015-7557. Stack exhaustion due to cyclic dependency causing to crash an application was found in librsvg2 while parsing SVG file CVE-2015-7558. The librsvg package has been updated to version 2.40.13, fixing these issues and...

7.5CVSS7.5AI score0.02399EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

News File Grabber 4.1.0.1 Subject Line Stack Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/22617/info News File Grabber is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

News File Grabber 4.1.0.1 Subject Line Stack Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/22617/info News File Grabber is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2013/11/26 12:0 a.m.33 views

Debian Security Advisory DSA 2804-1 (drupal7 - several vulnerabilities)

Multiple vulnerabilities have been discovered in Drupal, a fully-featured content management framework: Cross-site request forgery, insecure pseudo random number generation, code execution, incorrect security token validation and cross-site scripting. In order to avoid the remote code execution...

6.8CVSS0.4AI score0.03072EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/02/22 12:0 a.m.87 views

Multiple Newsrover / Newsbin / Newsreactor / Grabbit / News Files Grabber security vulnerabilities

Vulnerabilities on different XML-format files parsing...

10CVSS2.8AI score0.07791EPSS
Exploits2Affected Software6
Prion
Prion
added 2007/02/21 5:28 p.m.13 views

Stack overflow

Stack-based buffer overflow in News File Grabber 4.1.0.1 and earlier allows remote attackers to execute arbitrary code via a .nzb file with a long subject field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

9.3CVSS8.5AI score0.05539EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/02/21 5:28 p.m.18 views

CVE-2007-1037

Stack-based buffer overflow in News File Grabber 4.1.0.1 and earlier allows remote attackers to execute arbitrary code via a .nzb file with a long subject field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

9.3CVSS7.9AI score0.05539EPSS
Exploits0References5
Rows per page
Query Builder