Lucene search
K

476 matches found

Cvelist
Cvelist
added 2006/08/10 12:0 a.m.19 views

CVE-2006-4060

PHP remote file inclusion vulnerability in calendar.php in Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfgdir parameter...

7.5AI score0.03884EPSS
Exploits1References8
NVD
NVD
added 2006/05/30 9:2 p.m.14 views

CVE-2006-2674

Multiple SQL injection vulnerabilities in Tamber Forum 1.9.13 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 frmid parameter to a showforum.asp, 2 a search field to b forumsearch.asp, 3 Email address or 4 Password to c admin/index.asp, 5 frmcatid parameter to d...

7.5CVSS8.5AI score0.01413EPSS
Exploits0References8
Prion
Prion
added 2006/05/04 12:38 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in admin/serverdaystats.php in Virtual Hosting Control System VHCS allow remote attackers to inject arbitrary web script or HTML via the 1 day, 2 month, or 3 year parameter...

4.3CVSS6AI score0.0193EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2006/04/21 10:2 a.m.12 views

CVE-2006-1972

Cross-site scripting XSS vulnerability in EasyGallery.php in Wingnut EasyGallery allows remote attackers to inject arbitrary web script or HTML via the ordner parameter...

4.3CVSS5.7AI score0.01342EPSS
Exploits1References7
NVD
NVD
added 2006/04/13 1:6 a.m.12 views

CVE-2006-1760

Multiple cross-site scripting XSS vulnerabilities in JetPhoto allow remote attackers to inject arbitrary web script or HTML via the page parameter in 1 Classic.view/thumbnail.php, 2 Classic.view/gallery.php, 3 Classic.view/detail.php, or 4 Orange.view/detail.php; or 5 the name parameter in...

4.3CVSS5.8AI score0.02402EPSS
Exploits1References9
securityvulns
securityvulns
added 2006/01/16 12:0 a.m.61 views

[SA18472] Widexl Download Tracker "ID" Parameter Cross-Site Scripting

TITLE: Widexl Download Tracker "ID" Parameter Cross-Site Scripting SECUNIA ADVISORY ID: SA18472 VERIFY ADVISORY: http://secunia.com/advisories/18472/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Widexl Download Tracker 1.x http://secunia.com/product/6830/...

0.5AI score
Exploits0
NVD
NVD
added 2005/12/20 2:3 a.m.12 views

CVE-2005-4387

Cross-site scripting XSS vulnerability in home.php in contenite 0.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.7AI score0.01177EPSS
Exploits0References5
securityvulns
securityvulns
added 2005/04/28 12:0 a.m.20 views

SQL-injections in koobi-cms

SQL-injections in koobi-cms 4.2.3 The program: koobi-cms Homepage: http://www.dream4.de/ Vulnerable Versions: 4.2.3 Has found: CENSORED SVT 28.04.05 The description --------------- Vulnerability has been found in parameter page. In koobi-cms it Refers to - p. Data transferred to this parameter no...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/08 12:0 a.m.17 views

PerlDesk < 2 kb.cgi view Parameter SQL Injection

Binary data 2597.prm...

7.5CVSS7.3AI score0.02447EPSS
Exploits1References1
NVD
NVD
added 2004/12/31 5:0 a.m.19 views

CVE-2004-2347

blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote attackers to execute arbitrary commands via shell metacharacters such as '|' in the file parameter of ViewFile requests...

7.5CVSS7.6AI score0.09874EPSS
Exploits1References6
exploitpack
exploitpack
added 2003/09/29 12:0 a.m.20 views

Alan Ward A-Cart 2.0 - MSG Cross-Site Scripting

Alan Ward A-Cart 2.0 - MSG Cross-Site Scripting source: https://www.securityfocus.com/bid/8722/info A-Cart has been reported prone to a cross-site scripting vulnerability. The issue presents itself likely due to a lack of sufficient sanitization performed on data contained in the 'msg' URI...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2003/09/09 12:0 a.m.31 views

Invision Power Board (IP.Board) 1.x - index.php showtopic Cross-Site Scripting

Invision Power Board IP.Board 1.x - index.php showtopic Cross-Site Scripting source: https://www.securityfocus.com/bid/8575/info Invision Power Board is prone to a cross-site scripting vulnerability. It has been reported that a remote attacker may construct a malicious link to the index.php scrip...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2003/02/12 12:0 a.m.38 views

/search/index.cfm crossite scripting

/search/index.cfm allows insert HTML tags via search paramter...

1.8AI score
Exploits0References1
exploitpack
exploitpack
added 2003/01/13 12:0 a.m.8 views

Psunami Bulletin Board 0.x - Psunami.cgi Remote Command Execution (2)

Psunami Bulletin Board 0.x - Psunami.cgi Remote Command Execution 2 source: https://www.securityfocus.com/bid/6607/info Psunami Bulletin Board is prone to a remote command execution vulnerability. Psunami does not sufficiently sanitize shell metacharacters from query string parameters. As a resul...

0.2AI score
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.14 views

CVE-2002-1751

csLiveSupport.cgi in CGIScript.net csLiveSupport allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function...

5CVSS7.5AI score0.02117EPSS
Exploits0References3
NVD
NVD
added 2002/12/31 5:0 a.m.14 views

CVE-2002-2420

sitesearcher.cgi in Super Site Searcher allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter...

7.5CVSS7.7AI score0.0609EPSS
Exploits1References2
Rows per page
Query Builder