CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-7018

Malware in sbrugna...

7.5CVSS6.4AI score0.00969EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-7019

Malware in sbrugna...

4.3CVSS6.4AI score0.01109EPSS

Exploits1References5

seebug.org•added 2014/07/01 12:0 a.m.•18 views

One-News Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30804/info One-News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple HTML-injection issues. The vulnerabilities occur because the application fails to sufficiently...

7.1AI score

Exploits0

Prion•added 2009/08/24 7:30 p.m.•12 views

Sql injection

SQL injection vulnerability in index.php in One-News Beta 2 allows remote attackers to execute arbitrary SQL commands via the q parameter...

7.5CVSS9.1AI score0.00969EPSS

Exploits1References3

Prion•added 2009/08/24 7:30 p.m.•8 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in One-News Beta 2 allow remote attackers to inject arbitrary HTML and web script via the 1 title or 2 content parameters in a news item to add.php, and the 3 itemnum, 4 author, or 5 comment parameters in a comment to index.php. NOTE: vectors 1 an...

4.3CVSS6.2AI score0.01109EPSS

Exploits1References4

NVD•added 2009/08/24 7:30 p.m.•12 views

CVE-2008-7060

4.3CVSS5.8AI score0.01109EPSS

Exploits1References4

NVD•added 2009/08/24 7:30 p.m.•15 views

CVE-2008-7059

SQL injection vulnerability in index.php in One-News Beta 2 allows remote attackers to execute arbitrary SQL commands via the q parameter...

7.5CVSS8.4AI score0.00969EPSS

Exploits1References3

CVE•added 2009/08/24 7:0 p.m.•41 views

CVE-2008-7059

CVE-2008-7059 describes an SQL injection vulnerability in the index.php of One-News Beta 2, exploitable via the q parameter. This allows remote attackers to execute arbitrary SQL commands. The issue is classified with a CVSS v2 base score of 7.5 (HIGH) with network access, low complexity, and no ...

7.5CVSS8.7AI score0.00969EPSS

Exploits1References3Affected Software1

CVE•added 2009/08/24 7:0 p.m.•54 views

CVE-2008-7060

CVE-2008-7060 concerns One-News Beta 2 and involves multiple cross-site scripting (XSS) vulnerabilities. The XSS can be triggered via the title or content fields of a news item (add.php) and via itemnum, author, or comment fields of a comment (index.php). Vectors 1 and 2 require user authenticati...

4.3CVSS5.9AI score0.01109EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/08/24 7:0 p.m.•16 views

CVE-2008-7059

SQL injection vulnerability in index.php in One-News Beta 2 allows remote attackers to execute arbitrary SQL commands via the q parameter...

8.4AI score0.00969EPSS

Exploits1References3

Cvelist•added 2009/08/24 7:0 p.m.•11 views

CVE-2008-7060

5.8AI score0.01109EPSS

Exploits1References4

exploitpack•added 2008/08/23 12:0 a.m.•11 views

One-News - Multiple Input Validation Vulnerabilities

One-News - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/30804/info One-News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple HTML-injection issues. The vulnerabilities occur because the application fails to...

0.2AI score

Exploits0

Exploit DB•added 2008/08/23 12:0 a.m.•22 views

One-News - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/30804/info One-News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple HTML-injection issues. The vulnerabilities occur because the application fails to sufficiently sanitize user-supplied data. Exploiting...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by