Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

58 matches found

CVE
CVEadded 2006/10/31 8:0 p.m.53 views

CVE-2006-5626

CVE-2006-5626 affects phpFaber CMS prior to 1.3.36, specifically the file cms_images/js/htmlarea/htmlarea.php. The underlying issue is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML, likely via arbitrary parameters in the query strin...

4.3CVSS6.1AI score0.09306EPSS
Exploits1References7Affected Software1
Cvelist
Cvelistadded 2006/10/31 8:0 p.m.16 views

CVE-2006-5626

Cross-site scripting XSS vulnerability in cmsimages/js/htmlarea/htmlarea.php in phpFaber Content Management System CMS before 1.3.36 on 20061026 allows remote attackers to inject arbitrary web script or HTML, probably via arbitrary parameters in the query string, as demonstrated with a vigilon...

5.9AI score0.09306EPSS
Exploits1References7
NVD
NVDadded 2006/07/27 10:4 p.m.14 views

CVE-2006-3902

Cross-site scripting XSS vulnerability in index.php in phpFaber TopSites 2.0.9 allows remote attackers to inject arbitrary web script or HTML via the icat parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

4.3CVSS5.6AI score0.00297EPSS
Exploits0References2
Cvelist
Cvelistadded 2006/07/27 10:0 p.m.10 views

CVE-2006-3902

Cross-site scripting XSS vulnerability in index.php in phpFaber TopSites 2.0.9 allows remote attackers to inject arbitrary web script or HTML via the icat parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

5.6AI score0.00297EPSS
Exploits0References2
CVE
CVEadded 2006/07/27 10:0 p.m.54 views

CVE-2006-3902

CVE-2006-3902 is an XSS vulnerability in phpFaber TopSites 2.0.9 where the i_cat parameter of index.php can be exploited to inject arbitrary web script or HTML. The description notes that the vulnerability arises from the input handling in the i_cat parameter; no further details on the root cause...

4.3CVSS5.8AI score0.00297EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2006/07/24 12:19 p.m.16 views

CVE-2006-3770

Multiple SQL injection vulnerabilities in index.php in phpFaber TopSites 2.0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 icat or 2 method parameters...

7.5CVSS8.5AI score0.0139EPSS
Exploits0References9
securityvulns
securityvulnsadded 2006/07/24 12:0 a.m.47 views

[MajorSecurity #21] phpFaber TopSites <=2.0.9 - SQL Injection Vulnerability

MajorSecurity 21 phpFaber TopSites =2.0.9 - SQL Injection Vulnerability ----------------------------------------------------------------- Software: phpFaber TopSites Version: =2.0.9 Type: SQL Injection Vulnerability Made public: July, 19th 2006 Vendor: phpFaber, LLC Page: http://www.phpfaber.com/...

Exploits0
Cvelist
Cvelistadded 2006/07/21 5:0 p.m.14 views

CVE-2006-3770

Multiple SQL injection vulnerabilities in index.php in phpFaber TopSites 2.0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 icat or 2 method parameters...

8.5AI score0.0139EPSS
Exploits0References9
CVE
CVEadded 2006/07/21 5:0 p.m.37 views

CVE-2006-3770

The CVE-2006-3770 entry covers multiple SQL injection flaws in phpFaber TopSites (index.php) affecting version 2.0.9 and earlier. The underlying issue is unsecured handling of the (1) i_cat and (2) method parameters, enabling remote attackers to alter SQL queries and potentially compromise data. ...

7.5CVSS8.9AI score0.0139EPSS
Exploits0References9Affected Software1
Prion
Prionadded 2006/04/20 10:2 a.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in phpFaber TopSites allows remote attackers to inject arbitrary web script or HTML via the page parameter...

2.6CVSS6.1AI score0.00949EPSS
Exploits1References8Affected Software1
NVD
NVDadded 2006/04/20 10:2 a.m.9 views

CVE-2006-1878

Cross-site scripting XSS vulnerability in index.php in phpFaber TopSites allows remote attackers to inject arbitrary web script or HTML via the page parameter...

2.6CVSS5.7AI score0.00949EPSS
Exploits1References8
CVE
CVEadded 2006/04/20 10:0 a.m.50 views

CVE-2006-1878

CVE-2006-1878 affects phpFaber TopSites: a cross-site scripting (XSS) vulnerability in index.php, exploitable via the page parameter to inject arbitrary web script or HTML. The provided sources describe the vulnerability but do not specify affected product versions, exact root cause beyond unsani...

2.6CVSS5.7AI score0.00949EPSS
Exploits1References8Affected Software1
Cvelist
Cvelistadded 2006/04/20 10:0 a.m.12 views

CVE-2006-1878

Cross-site scripting XSS vulnerability in index.php in phpFaber TopSites allows remote attackers to inject arbitrary web script or HTML via the page parameter...

5.7AI score0.00949EPSS
Exploits1References8
securityvulns
securityvulnsadded 2006/04/19 12:0 a.m.36 views

[SA19652] phpFaber TopSites "page" Cross-Site Scripting Vulnerability

TITLE: phpFaber TopSites "page" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19652 VERIFY ADVISORY: http://secunia.com/advisories/19652/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: phpFaber TopSites 1.x http://secunia.com/product/9388/ DESCRIPTIO...

0.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/04/17 12:0 a.m.21 views

PHPFaber TopSites - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17542/info phpFaber TopSites is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in t...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2006/04/16 12:0 a.m.24 views

phpFaber TopSites Script Cross-Site Scripting

Description : phpFaber TopSites is a feature-packed, reliable and secure Top List coded in PHP and mySQL. phpFaber TopSites has proven its reliability time and time again under the most active server environments. Our feature list is large, including all elements you need to easily maintain your...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2005/10/30 12:0 a.m.9 views

phpFaber CMS 1.3.36 - Htmlarea.php Cross-Site Scripting

phpFaber CMS 1.3.36 - Htmlarea.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20821/info phpFaber CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

Exploits0
Exploit DB
Exploit DBadded 2005/10/30 12:0 a.m.21 views

phpFaber CMS 1.3.36 - 'Htmlarea.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20821/info phpFaber CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting us...

7.4AI score
Exploits0
Rows per page
Query Builder