Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-2643

Malware in sbrugna...

7.5CVSS6.4AI score0.01116EPSS
Exploits0References2
Prion
Prion
added 2008/04/30 12:5 p.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the 1 invisible and 2 timeoffset parameters to profile/controlpanel.asp and the 3 attachmentid parameter to forums/attach-file.asp...

7.5CVSS9.3AI score0.01003EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2008/04/30 12:5 p.m.13 views

Cross site scripting

Mulatiple cross-site scripting XSS vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to inject arbitrary web script or HTML via the 1 toid parameter to send-private-message.asp and the 2 redirect parameter to admin/impersonate.asp. NOTE: vector 2 requires authentication...

4.3CVSS6.1AI score0.03467EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/04/30 10:0 a.m.24 views

CVE-2008-2023

Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the 1 invisible and 2 timeoffset parameters to profile/controlpanel.asp and the 3 attachmentid parameter to forums/attach-file.asp...

8.5AI score0.01003EPSS
Exploits1References5
CVE
CVE
added 2008/04/30 10:0 a.m.40 views

CVE-2008-2022

The CVE-2008-2022 entry describes multiple XSS vulnerabilities in PD9 Software MegaBBS 2.2. Affected component paths include send-private-message.asp (via the toid parameter) and admin/impersonate.asp (via the redirect parameter); the second vector requires authentication. The vulnerabilities all...

4.3CVSS5.8AI score0.03467EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2008/01/23 10:0 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in profile-upload/upload.asp in PD9 Software MegaBBS 1.5.14b allows remote attackers to inject arbitrary web script or HTML via the target parameter...

4.3CVSS6.1AI score0.01465EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2008/01/23 9:0 p.m.40 views

CVE-2008-0436

CVE-2008-0436 refers to a cross-site scripting (XSS) vulnerability in PD9 Software MegaBBS 1.5.14b. The flaw resides in the profile-upload/upload.asp endpoint, exploitable via the target parameter to inject arbitrary web script or HTML. NVD indicates the attack could be remote and non-authenticat...

4.3CVSS5.7AI score0.01465EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder