Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2775

Malware in sbrugna...

7.5CVSS6.4AI score0.02423EPSS
Exploits0References5
NVD
NVD
added 2008/06/19 8:41 p.m.19 views

CVE-2008-2782

Multiple directory traversal vulnerabilities in OtomiGenX 2.2 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter to 1 libraryrss.php and 2 rss.php...

7.5CVSS7.3AI score0.02423EPSS
Exploits0References4
Cvelist
Cvelist
added 2008/06/19 8:0 p.m.25 views

CVE-2008-2782

Multiple directory traversal vulnerabilities in OtomiGenX 2.2 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter to 1 libraryrss.php and 2 rss.php...

7.3AI score0.02423EPSS
Exploits0References4
CVE
CVE
added 2008/06/19 8:0 p.m.48 views

CVE-2008-2782

CVE-2008-2782 affects OtomiGenX 2.2. The vulnerability is a directory-traversal flaw in the PHP components library_rss.php and rss.php that allows remote attackers to include and execute arbitrary local files by supplying a .. (dot dot) in the lang parameter. This aligns with the NVD entry (CVSSv...

7.5CVSS7.3AI score0.02423EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2008/06/10 6:32 p.m.12 views

Sql injection

SQL injection vulnerability in login.php in OtomiGenX 2.2 allows remote attackers to execute arbitrary SQL commands via the userAccount parameter aka the User Name field to index.php. NOTE: some of these details are obtained from third party information...

7.5CVSS9AI score0.01096EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/06/10 6:32 p.m.19 views

CVE-2008-2642

SQL injection vulnerability in login.php in OtomiGenX 2.2 allows remote attackers to execute arbitrary SQL commands via the userAccount parameter aka the User Name field to index.php. NOTE: some of these details are obtained from third party information...

7.5CVSS8.3AI score0.01096EPSS
Exploits0References5
Cvelist
Cvelist
added 2008/06/10 6:0 p.m.25 views

CVE-2008-2642

SQL injection vulnerability in login.php in OtomiGenX 2.2 allows remote attackers to execute arbitrary SQL commands via the userAccount parameter aka the User Name field to index.php. NOTE: some of these details are obtained from third party information...

8.3AI score0.01096EPSS
Exploits0References5
CVE
CVE
added 2008/06/10 6:0 p.m.32 views

CVE-2008-2642

CVE-2008-2642 details an SQL injection vulnerability in OtomiGenX 2.2. The flaw occurs in login.php via the userAccount parameter (User Name) passed to index.php, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a NETWORK attack vector, LOW complexity, no authentic...

7.5CVSS8.4AI score0.01096EPSS
Exploits0References5Affected Software1
exploitpack
exploitpack
added 2008/06/02 12:0 a.m.8 views

OtomiGenX 2.2 - userAccount SQL Injection

OtomiGenX 2.2 - userAccount SQL Injection source: https://www.securityfocus.com/bid/29470/info OtomiGenX is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

0.2AI score
Exploits0
Rows per page
Query Builder