Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7211 matches found

NVD
NVDadded 2005/06/09 4:0 a.m.19 views

CVE-2005-1876

Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with administrative privileges to execute arbitrary PHP code via certain inputs that are injected into a template .tpl file...

4.5CVSS7.8AI score0.0058EPSS
Exploits0References3
NVD
NVDadded 2005/06/09 4:0 a.m.15 views

CVE-2005-1894

Direct code injection vulnerability in FlatNuke 2.5.3 allows remote attackers to execute arbitrary PHP code by placing the code into the Referer header of an HTTP request, which causes the code to be injected into referer.php, which can then be accessed by the attacker...

7.5CVSS7.8AI score0.03465EPSS
Exploits1References5
CVE
CVEadded 2005/06/08 4:0 a.m.57 views

CVE-2005-1894

Direct code injection vulnerability in FlatNuke 2.5.3 allows remote attackers to execute arbitrary PHP code by placing code into the Referer header, which is injected into referer.php. Affected software: FlatNuke 2.5.3. Root cause: unsafely handling the Referer header leads to code execution. Imp...

7.5CVSS8.2AI score0.03465EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2005/06/08 4:0 a.m.19 views

CVE-2005-1894

Direct code injection vulnerability in FlatNuke 2.5.3 allows remote attackers to execute arbitrary PHP code by placing the code into the Referer header of an HTTP request, which causes the code to be injected into referer.php, which can then be accessed by the attacker...

7.8AI score0.03465EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2005/06/07 8:0 a.m.6 views

CVE-2005-1876

Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with administrative privileges to execute arbitrary PHP code via certain inputs that are injected into a template .tpl file...

8.4AI score0.0058EPSS
Exploits0References3
CVE
CVEadded 2005/06/07 4:0 a.m.56 views

CVE-2005-1876

The CVE-2005-1876 entry describes a direct code injection vulnerability in CuteNews 1.3.6 and earlier . The issue allows remote attackers with administrative privileges to execute arbitrary PHP code by inputs injected into a template file (.tpl), effectively compromising the server’s PHP executio...

4.5CVSS8.2AI score0.0058EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2005/06/07 4:0 a.m.19 views

CVE-2005-1864

PHP remote file inclusion vulnerability in caladmintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter...

7.6AI score0.01073EPSS
Exploits1References2
Cvelist
Cvelistadded 2005/06/07 4:0 a.m.21 views

CVE-2005-1868

I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension...

7.7AI score0.01939EPSS
Exploits0References3
Cvelist
Cvelistadded 2005/06/07 4:0 a.m.23 views

CVE-2005-1876

Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with administrative privileges to execute arbitrary PHP code via certain inputs that are injected into a template .tpl file...

7.8AI score0.0058EPSS
Exploits0References3
Cvelist
Cvelistadded 2005/06/07 4:0 a.m.26 views

CVE-2005-1881

upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code...

7.4AI score0.03429EPSS
Exploits1References4
Cvelist
Cvelistadded 2005/06/07 4:0 a.m.22 views

CVE-2005-1882

PHP remote file inclusion vulnerability in lastgallery.php in YaPiG 0.93u and 0.94u allows remote attackers to execute arbitrary PHP code via the YAPIGPATH parameter...

7.6AI score0.02609EPSS
Exploits1References4
exploitpack
exploitpackadded 2005/06/07 12:0 a.m.13 views

FlatNuke 2.5.x - help.php Multiple Cross-Site Scripting Vulnerabilities

FlatNuke 2.5.x - help.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/13882/info Multiple input validation vulnerabilities reportedly affect FlatNuke. These issues are due to a failure of the application to properly sanitize user-supplied input prior to...

7AI score
Exploits0
securityvulns
securityvulnsadded 2005/06/07 12:0 a.m.31 views

[SA15603] FlatNuke Multiple Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

1AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2005/06/07 12:0 a.m.7 views

PT-2005-2825 · I-Man · I-Man

Name of the Vulnerable Software and Affected Versions: I-Man versions 0.9 and earlier Description: The issue allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension. This can be done by exploiting the file upload functionality, potentially leadin...

7.5CVSS7.8AI score0.01939EPSS
Exploits0References5
Exploit DB
Exploit DBadded 2005/06/07 12:0 a.m.24 views

FlatNuke 2.5.x - 'index.php?where' Full Path Disclosure

source: https://www.securityfocus.com/bid/13882/info Multiple input validation vulnerabilities reportedly affect FlatNuke. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in application-critical actions such as generating Web content...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2005/06/07 12:0 a.m.38 views

FlatNuke 2.5.x - 'help.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/13882/info Multiple input validation vulnerabilities reportedly affect FlatNuke. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in application-critical actions such as generating Web content...

7AI score
Exploits0
NVD
NVDadded 2005/06/06 4:0 a.m.18 views

CVE-2005-1881

upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code...

7.5CVSS7.4AI score0.03429EPSS
Exploits1References4
NVD
NVDadded 2005/06/01 4:0 a.m.18 views

CVE-2005-1820

zboard.php in Zeroboard version 4.1pl2 to 4.1pl5 allows remote attackers to execute arbitrary PHP code via improper quoting when using the pregreplace function...

7.5CVSS7.7AI score0.02657EPSS
Exploits1References3
NVD
NVDadded 2005/06/01 4:0 a.m.10 views

CVE-2005-1821

PHP remote file inclusion vulnerability in pdlheader.inc.php in PowerDownload 3.0.2 and 3.0.3 allows remote attackers to execute arbitrary PHP code via the incdir parameter to downloads.php...

7.5CVSS7.6AI score0.02887EPSS
Exploits1References5
securityvulns
securityvulnsadded 2005/06/01 12:0 a.m.28 views

[SA15558] I-Man File Attachments Upload Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.9AI score
Exploits0
Rows per page
Query Builder