CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2006/09/07 12:4 a.m.•11 views

CVE-2006-4606

Multiple SQL injection vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 idtemas parameter in busquedatema.php, the 2 cadena parameter in busqueda.php, the 3 idautor parameter in autor.php, the 4 email parameter in lista.php, an...

7.5CVSS8.5AI score0.09429EPSS

Exploits0References15

Cvelist•added 2006/09/07 12:0 a.m.•20 views

CVE-2006-4606

8.5AI score0.09429EPSS

Exploits0References15

Cvelist•added 2006/09/07 12:0 a.m.•18 views

CVE-2006-4608

Multiple cross-site scripting XSS vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cadena parameter in busqueda.php and the 2 email parameter in lista.php...

5.8AI score0.13669EPSS

Exploits1References8

CVE•added 2006/09/07 12:0 a.m.•45 views

CVE-2006-4606

CVE-2006-4606 affects Longino Jacome’s php-Revista 1.1.2. The vulnerability involves multiple SQL injection flaws in five parameters across different PHP scripts: (1) id_temas in busqueda_tema.php, (2) cadena in busqueda.php, (3) id_autor in autor.php, (4) email in lista.php, and (5) id_articulo ...

7.5CVSS8.5AI score0.09429EPSS

Exploits0References15Affected Software1

CVE•added 2006/09/07 12:0 a.m.•40 views

CVE-2006-4607

CVE-2006-4607 affects Longino Jacome php-Revista 1.1.2. The vulnerability is in admin/index.php, where remote attackers can bypass authentication by setting ID_ADMIN and SUPER_ADMIN to 1. The NVD entry documents an authentication bypass with this parameter manipulation. No explicit remediation is...

7.5CVSS7.3AI score0.1036EPSS

Exploits1References8Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by