Lucene search
K

27 matches found

CVE
CVE
added 2008/01/11 12:0 a.m.46 views

CVE-2008-0230

CVE-2008-0230 describes a PHP remote file inclusion vulnerability in the file php121db.php used by osDate 2.0.8 (and possibly earlier versions). An attacker can pass a URL in the php121dir parameter to cause the vulnerable script to include remote PHP code, potentially enabling arbitrary code exe...

7.5CVSS7.7AI score0.0259EPSS
Exploits1References5Affected Software1
securityvulns
securityvulns
added 2006/07/24 12:0 a.m.48 views

osDate 1.1.7 multiple vulnerabilities

/ osDate 1.1.7 advisory / Date of written Advisory: ------------------------- July, 18 2006 Product: -------- OSdate = 1.1.7 Vendor: ------- http://tufat.com/ Description: ------------ osDate is a full fledged dating script which can be eaily integrated with phpBB and flashChat, and provides...

6.1AI score
Exploits0
NVD
NVD
added 2006/07/21 2:3 p.m.13 views

CVE-2006-3767

Cross-site scripting XSS vulnerability in showprofile.php in Darren's $5 Script Archive osDate 1.1.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the onerror attribute in an HTML IMG tag with a non-existent source file in txtcomment parameter, which is used when...

6.8CVSS5.7AI score0.01643EPSS
Exploits1References8
NVD
NVD
added 2006/07/21 2:3 p.m.18 views

CVE-2006-3766

Darren's $5 Script Archive osDate 1.1.7 and earlier allows users to boost their own ratings via a txtrating parameter with a score greater than the intended maximum of 10...

5CVSS6.4AI score0.01138EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/07/21 12:0 a.m.23 views

CVE-2006-3766

Darren's $5 Script Archive osDate 1.1.7 and earlier allows users to boost their own ratings via a txtrating parameter with a score greater than the intended maximum of 10...

6.4AI score0.01138EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/07/21 12:0 a.m.23 views

CVE-2006-3767

Cross-site scripting XSS vulnerability in showprofile.php in Darren's $5 Script Archive osDate 1.1.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the onerror attribute in an HTML IMG tag with a non-existent source file in txtcomment parameter, which is used when...

5.7AI score0.01643EPSS
Exploits1References8
CVE
CVE
added 2006/07/21 12:0 a.m.40 views

CVE-2006-3766

The CVE-2006-3766 entry affects Darren's $5 Script Archive osDate, specifically versions 1.1.7 and earlier. The vulnerability arises in the txtrating parameter, where a score can be set higher than the intended maximum of 10, enabling users to boost their own ratings. The available connected docu...

5CVSS6.8AI score0.01138EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder