Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-4997

Malware in sbrugna...

7.5CVSS6.4AI score0.00633EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-7167

Malware in sbrugna...

6.8CVSS6.4AI score0.00981EPSS
Exploits1References11
NVD
NVDadded 2009/09/11 4:30 p.m.11 views

CVE-2008-7208

Multiple SQL injection vulnerabilities in OneCMS 2.4, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the 1 username parameter $usernameb variable to alogin.php or 2 user parameter to staff.php...

6.8CVSS8.6AI score0.00981EPSS
Exploits1References10
Prion
Prionadded 2009/09/11 4:30 p.m.7 views

Unrestricted file upload

Unrestricted file upload vulnerability in the add2 action in aupload.php in OneCMS 2.4, and possibly earlier, allows remote attackers to execute arbitrary code by uploading a file with an executable extension and using a safe content type such as image/gif, then accessing it via a direct request ...

7.5CVSS8.4AI score0.13151EPSS
Exploits1References9Affected Software1
Prion
Prionadded 2009/09/11 4:30 p.m.6 views

Sql injection

Multiple SQL injection vulnerabilities in OneCMS 2.4, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the 1 username parameter $usernameb variable to alogin.php or 2 user parameter to staff.php...

6.8CVSS9.3AI score0.00981EPSS
Exploits1References10Affected Software1
CVE
CVEadded 2009/09/11 4:0 p.m.42 views

CVE-2008-7209

CVE-2008-7209 describes an unrestricted file upload vulnerability in OneCMS 2.4 (a_upload.php, add2 action). The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension and a safe content type (e.g., image/gif), then accessing it via a direct reque...

7.5CVSS8.1AI score0.13151EPSS
Exploits1References9Affected Software1
0day.today
0day.todayadded 2008/01/07 12:0 a.m.16 views

OneCMS 2.4 Remote SQL Injection / Upload Vulnerabilities

Exploit for unknown platform in category web applications ======================================================== OneCMS 2.4 Remote SQL Injection / Upload Vulnerabilities ======================================================== WwW.BugReport.ir AmnPardaz Security Research Team Title: OneCMS...

7.1AI score
Exploits0
Prion
Prionadded 2007/09/20 9:17 p.m.7 views

Sql injection

SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows remote attackers to execute arbitrary SQL commands via the abc parameter...

7.5CVSS9.1AI score0.00633EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2007/09/20 9:17 p.m.6 views

CVE-2007-5016

SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows remote attackers to execute arbitrary SQL commands via the abc parameter...

7.5CVSS8.4AI score0.00633EPSS
Exploits1References5
Cvelist
Cvelistadded 2007/09/20 9:0 p.m.14 views

CVE-2007-5016

SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows remote attackers to execute arbitrary SQL commands via the abc parameter...

8.4AI score0.00633EPSS
Exploits1References5
CVE
CVEadded 2007/09/20 9:0 p.m.42 views

CVE-2007-5016

The CVE-2007-5016 entry describes a SQL injection in OneCMS 2.4, specifically in userreviews.php, exploitable via the abc parameter to allow remote SQL execution. The affected component is the userreviews.php path in OneCMS 2.4; root cause is improper handling of the abc parameter leading to SQL ...

7.5CVSS8.4AI score0.00633EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder