CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-0148

Malware in sbrugna...

6.8CVSS6.4AI score0.05131EPSS

Exploits0References5

CNVD•added 2016/10/09 12:0 a.m.•1 views

JumboTCMS V7.1.5.0829 ordernum parameter has sql injection vulnerability

JumboTCMS V7.1.5.0829 is a set of open source web content management system built by the Microsoft . JumboTCMS V7.1.5.0829 user/ajax.aspx?oper=ajaxPayOrder page ordernum parameter exists sql injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database informatio...

7.2AI score

Exploits0References1

NVD•added 2007/01/09 6:28 p.m.•21 views

CVE-2007-0144

Cross-site scripting XSS vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated attackers to inject arbitrary web script or HTML via the ordernum parameter...

6.8CVSS5.3AI score0.05131EPSS

Exploits0References4

Cvelist•added 2007/01/09 6:0 p.m.•21 views

CVE-2006-6911

SQL injection vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated users to execute arbitrary SQL commands via the ordernum parameter...

7.9AI score0.01077EPSS

Exploits0References4

CVE•added 2007/01/09 6:0 p.m.•37 views

CVE-2006-6911

CVE-2006-6911 describes an SQL injection vulnerability in search.asp of Digitizing Quote And Ordering System 1.0. The underlying issue is improper sanitization of the ordernum parameter, allowing authenticated remote users to manipulate SQL queries. Impact per sources: potential arbitrary SQL exe...

6CVSS8.3AI score0.01077EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by