CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. source: http://www.securityfocus.com/bid/19311/info OZJournal is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary HTML and script...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•18 views

OZJournals 1.2 Vname Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17954/info OZJournals is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

7.1AI score

Exploits0

Prion•added 2008/01/23 10:0 p.m.•10 views

Directory traversal

Directory traversal vulnerability in index.php in OZJournals 2.1.1 allows remote attackers to read portions of arbitrary files via a .. dot dot in the id parameter in a printpreview action...

5CVSS7.2AI score0.04508EPSS

Exploits0References5Affected Software1

NVD•added 2008/01/23 10:0 p.m.•9 views

CVE-2008-0435

Directory traversal vulnerability in index.php in OZJournals 2.1.1 allows remote attackers to read portions of arbitrary files via a .. dot dot in the id parameter in a printpreview action...

5CVSS6.7AI score0.04508EPSS

Exploits0References5

Cvelist•added 2008/01/23 9:0 p.m.•13 views

CVE-2008-0435

Directory traversal vulnerability in index.php in OZJournals 2.1.1 allows remote attackers to read portions of arbitrary files via a .. dot dot in the id parameter in a printpreview action...

6.7AI score0.04508EPSS

Exploits0References5

CVE•added 2008/01/23 9:0 p.m.•36 views

CVE-2008-0435

CVE-2008-0435 concerns OZJournals 2.1.1 where a directory traversal flaw in index.php permits reading portions of arbitrary files via a .. sequence in the id parameter during a printpreview action. The vulnerability arises from improper validation of the id input, enabling an attacker to traverse...

5CVSS6.7AI score0.04508EPSS

Exploits0References5Affected Software1

seebug.org•added 2008/01/22 12:0 a.m.•16 views

OZJournals 2.1.1 (id) File Disclosure Vulnerability

No description provided by source. Name: OZJournals 2.1.1 Webiste: http://www.aqonlinenetworks.com/ Vulnerability type: Local File Exposure Author: shinmai, 2008-01-21 Description: OZJournals uses .php-files as it's storage, and posts are read from them with the getcontents-function. This protect...

7.1AI score

Exploits0

Packet Storm•added 2008/01/22 12:0 a.m.•21 views

ozjournals-disclose.txt

Name: OZJournals 2.1.1 Webiste: http://www.aqonlinenetworks.com/ Vulnerability type: Local File Exposure Author: shinmai, 2008-01-21 Description: OZJournals uses .php-files as it's storage, and posts are read from them with the getcontents-function. This protects from traditional LFI-exploits, bu...

7.4AI score

Exploits0

0day.today•added 2008/01/21 12:0 a.m.•18 views

OZJournals 2.1.1 (id) File Disclosure Vulnerability

Exploit for unknown platform in category web applications =================================================== OZJournals 2.1.1 id File Disclosure Vulnerability =================================================== Name: OZJournals 2.1.1 Webiste: http://www.aqonlinenetworks.com/ Vulnerability type:...

7.1AI score

Exploits0

exploitpack•added 2008/01/21 12:0 a.m.•14 views

OZJournals 2.1.1 - id File Disclosure

OZJournals 2.1.1 - id File Disclosure Name: OZJournals 2.1.1 Webiste: http://www.aqonlinenetworks.com/ Vulnerability type: Local File Exposure Author: shinmai, 2008-01-21 Description: OZJournals uses .php-files as it's storage, and posts are read from them with the getcontents-function. This...

7.4AI score

Exploits0

Exploit DB•added 2008/01/21 12:0 a.m.•37 views

OZJournals 2.1.1 - 'id' File Disclosure

7.4AI score

Exploits0

CVE•added 2006/08/11 10:0 a.m.•46 views

CVE-2006-4086

The CVE-2006-4086 entry concerns Elaine Aquino Online Zone Journals (OZJournals) 1.5. The vulnerability is a cross-site scripting (XSS) flaw in index.php where an attacker can inject arbitrary web script or HTML via the keywords parameter. The affected component is OZJournals 1.5’s index.php, wit...

4.3CVSS5.8AI score0.00297EPSS

Exploits0References2Affected Software1

NVD•added 2006/08/10 12:4 a.m.•40 views

CVE-2006-4069

Multiple cross-site scripting XSS vulnerabilities in Elaine Aquino Online Zone Journals OZJournals 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 m and 2 c parameters in index.php, 3 a search action, and 4 a "submit comment" action...

4.3CVSS5.8AI score0.00681EPSS

Exploits1References6

CVE•added 2006/08/10 12:0 a.m.•40 views

CVE-2006-4069

CVE-2006-4069 describes multiple cross-site scripting (XSS) vulnerabilities in Elaine Aquino Online Zone Journals (OZJournals) 1.5. The issues occur in the web app via the parameters (1) m, (2) c in index.php, (3) a search action, and (4) a "submit comment" action, enabling remote attackers to in...

4.3CVSS6AI score0.00681EPSS

Exploits1References6Affected Software1

Cvelist•added 2006/08/10 12:0 a.m.•11 views

CVE-2006-4069

5.8AI score0.00681EPSS

Exploits1References6

Exploit DB•added 2006/08/02 12:0 a.m.•32 views

OZJournals 1.5 - Multiple Input Validation Vulnerabilities

OZJournals 1.5 Multiple Input Validation Vulnerabilities. CVE-2006-1435. Webapps exploit for php platform source: http://www.securityfocus.com/bid/19311/info OZJournal is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An...

6.8CVSS6.9AI score0.0124EPSS

Exploits1

Packet Storm•added 2006/05/21 12:0 a.m.•25 views

ozjournals.txt

OZJournals 1.2 alert"lol";&vemail=mail%40mail.it&vlocation=test&vcomment=test ---------------------------------------------------------------------------------------------- Credit Author: Kiki Site: http://kiki91.altervista.org IRC Channel: irc.azzurra.org 6667 system...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by