Lucene search
K

143 matches found

Tenable Nessus
Tenable Nessus
added 2005/01/04 12:0 a.m.23 views

All Enthusiast ReviewPost PHP Pro < 2.5.2 Multiple Input Validation Vulnerabilities

Binary data 2486.prm...

7.5CVSS7.3AI score0.01239EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2005/01/04 12:0 a.m.12 views

All Enthusiast PhotoPost PHP Pro < 4.8.6 Multiple XSS

Binary data 2484.prm...

7.5CVSS7.3AI score0.01812EPSS
Exploits4References2
NVD
NVD
added 2005/01/03 5:0 a.m.16 views

CVE-2005-0271

Multiple SQL injection vulnerabilities in ReviewPost PHP Pro before 2.84 allow remote attackers to execute arbitrary SQL commands via the 1 cat parameter to showcat.php or 2 product parameter to addfav.php...

7.5CVSS8.6AI score0.01229EPSS
Exploits3References4
NVD
NVD
added 2004/12/31 5:0 a.m.12 views

CVE-2004-2175

Multiple SQL injection vulnerabilities in ReviewPost PHP Pro allow remote attackers to execute arbitrary SQL commands via the 1 product parameter to showproduct.php or 2 cat parameter to showcat.php...

7.5CVSS8.6AI score0.01239EPSS
Exploits1References5
NVD
NVD
added 2004/11/23 5:0 a.m.15 views

CVE-2004-0250

SQL injection vulnerability in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain privileges via 1 the product parameter in showproduct.php or 2 the cat parameter in showcat.php...

10CVSS8AI score0.03191EPSS
Exploits1References4
NVD
NVD
added 2004/11/23 5:0 a.m.18 views

CVE-2004-0239

SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable...

10CVSS7.9AI score0.03306EPSS
Exploits1References4
NVD
NVD
added 2004/03/29 5:0 a.m.14 views

CVE-2004-1870

Multiple SQL injection vulnerabilities in PhotoPost PHP Pro 4.6.x and earlier allow remote attackers to gain users' passwords via the 1 photo parameter to addfav.php, 2 photo parameter to comments.php, 3 credit parameter to comments.php, 4 cat parameter to index.php, 5 ppuser parameter to...

7.5CVSS8.1AI score0.0116EPSS
Exploits2References5
NVD
NVD
added 2004/03/29 5:0 a.m.13 views

CVE-2004-1871

Multiple cross-site scripting XSS vulnerabilities in PhotoPost PHP Pro 4.6.x and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 ppuser, 2 password, 3 stype, 4 perpage, 5 sort, 6 page, 7 si, or 8 cat parameters to showmembers.php, or the 9 photo name, 10 photo...

4.3CVSS5.9AI score0.01976EPSS
Exploits3References6
Exploit DB
Exploit DB
added 2004/03/29 12:0 a.m.36 views

PhotoPost PHP Pro 3.x/4.x - &#039;showgallery.php&#039; Multiple SQL Injections

source: https://www.securityfocus.com/bid/9994/info Multiple SQL injection, cross-site scripting and HTML injection vulnerabilities have been identified in the application, which may allow an attacker to execute arbitrary HTML or script code in a user's browser and/or influence SQL query logic to...

7.4AI score
Exploits0
CVE
CVE
added 2004/03/18 5:0 a.m.40 views

CVE-2004-0250

The CVE-2004-0250 issue is a SQL injection in PhotoPost PHP Pro 4.6 and earlier. The vulnerability allows remote attackers to gain privileges via user-controlled inputs in showproduct.php (product parameter) or showcat.php (cat parameter). The describes affected component is the PHP-based PhotoPo...

10CVSS8.4AI score0.03191EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2004/03/18 5:0 a.m.19 views

CVE-2004-0239

SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable...

7.9AI score0.03306EPSS
Exploits1References4
CVE
CVE
added 2004/03/18 5:0 a.m.59 views

CVE-2004-0239

CVE-2004-0239 affects PhotoPost PHP Pro up to version 4.6. The vulnerability is a SQL injection in the showphoto.php script, exploitable via the photo parameter, which allows remote attackers to access unauthorized data. The issue stems from unsanitized input used in a database query. Affected so...

10CVSS7.9AI score0.03306EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2004/03/18 5:0 a.m.20 views

CVE-2004-0250

SQL injection vulnerability in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain privileges via 1 the product parameter in showproduct.php or 2 the cat parameter in showcat.php...

8AI score0.03191EPSS
Exploits1References4
securityvulns
securityvulns
added 2004/02/05 12:0 a.m.33 views

ZH2004-04SA &#40;security advisory&#41;: Multiple Sql Injection Vulnerabilities in ReviewPost PHP Pro

ZH2004-04SA security advisory: Multiple Sql Injection Vulnerabilities in ReviewPost PHP Pro Published: 04 february 2004 Released: 04 february 2004 Name: ReviewPost PHP Pro Affected Systems: current and prior versions Issue: Sql Injection Vulnerability Author: G00db0y from Zone-h Security Labs -...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2004/02/04 12:0 a.m.13 views

All Enthusiast ReviewPost PHP Pro 2.5 - showproduct.php SQL Injection

All Enthusiast ReviewPost PHP Pro 2.5 - showproduct.php SQL Injection source: https://www.securityfocus.com/bid/9574/info It has been reported that ReviewPost PHP Pro may be prone to multiple SQL injection vulnerabilities that may allow an attacker to influence SQL query logic. This issue could b...

1.2AI score
Exploits0
Packet Storm
Packet Storm
added 2004/02/04 12:0 a.m.25 views

ZH2004-04SA.txt

ZH2004-04SA security advisory: Multiple Sql Injection Vulnerabilities in ReviewPost PHP Pro Published: 04 february 2004 Released: 04 february 2004 Name: ReviewPost PHP Pro Affected Systems: current and prior versions Issue: Sql Injection Vulnerability Author: G00db0y from Zone-h Security Labs -...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/02/04 12:0 a.m.25 views

All Enthusiast ReviewPost PHP Pro 2.5 - showcat.php SQL Injection

All Enthusiast ReviewPost PHP Pro 2.5 - showcat.php SQL Injection source: https://www.securityfocus.com/bid/9574/info It has been reported that ReviewPost PHP Pro may be prone to multiple SQL injection vulnerabilities that may allow an attacker to influence SQL query logic. This issue could be...

1.2AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/04 12:0 a.m.83 views

All Enthusiast ReviewPost PHP Pro 2.5 - &#039;showcat.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/9574/info It has been reported that ReviewPost PHP Pro may be prone to multiple SQL injection vulnerabilities that may allow an attacker to influence SQL query logic. This issue could be exploited to disclose sensitive information that may be used to gain...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/04 12:0 a.m.46 views

All Enthusiast ReviewPost PHP Pro 2.5 - &#039;showproduct.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/9574/info It has been reported that ReviewPost PHP Pro may be prone to multiple SQL injection vulnerabilities that may allow an attacker to influence SQL query logic. This issue could be exploited to disclose sensitive information that may be used to gain...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/02/04 12:0 a.m.64 views

ReviewPost PHP Pro Multiple Script SQL Injections

ReviewPost PHP Pro, a web-based software that manages user's opinions, is installed on the remote web server. The installed version fails to sanitize user input to the 'product' parameter of the 'showproduct.php' script and the 'cat' parameter of the 'showcat.php' script before using it in a...

7.5CVSS5.5AI score0.01239EPSS
Exploits1References2
Rows per page
Query Builder