CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

PHPKit 1.6.1 - popup.php SQL Injection source: https://www.securityfocus.com/bid/20911/info PHPKIT is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

Exploits0

Cvelist•added 2005/02/19 5:0 a.m.•10 views

CVE-2004-1537

Cross-site scripting XSS vulnerability in popup.php in PHPKIT 1.6.03 through 1.6.1 allows remote attackers to execute arbitrary web script via the img parameter...

6.2AI score0.00416EPSS

Exploits1References4

NVD•added 2004/12/31 5:0 a.m.•9 views

CVE-2004-1879

Cross-site scripting XSS vulnerability in PHPKIT 1.6.03 allows allows remote attackers to inject arbitrary web script or HTML via forum messages...

4.3CVSS5.7AI score0.00335EPSS

Exploits0References3

NVD•added 2004/12/31 5:0 a.m.•8 views

CVE-2004-1537

Cross-site scripting XSS vulnerability in popup.php in PHPKIT 1.6.03 through 1.6.1 allows remote attackers to execute arbitrary web script via the img parameter...

4.3CVSS6.2AI score0.00416EPSS

Exploits1References4

securityvulns•added 2004/11/23 12:0 a.m.•26 views

PHPKIT SQL Injection, XSS

Author: Steve Date: November 22, 2004 Affected Software:PHP KIT Software Version: 1.6.03 - 1.6.1 Software URL: http://www.phpkit.de Attack: SQL Injection, allowing people to manipulate the query into pulling data. XSS What is PHPKIT: PHPKIT is a modular developed Homepage Software which can simpl...

0.2AI score

Exploits0

NVD•added 2003/11/02 5:0 a.m.•14 views

CVE-2003-1187

Cross-site scripting XSS vulnerability in include.php in PHPKIT 1.6.02 and 1.6.03 allows remote attackers to inject arbitrary web script or HTML via the contactemail parameter...

6.8CVSS5.7AI score0.00655EPSS

Exploits1References4

Exploit DB•added 2003/11/02 12:0 a.m.•38 views

PHPKit 1.6 - 'Include.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/8960/info PHPKIT is reported to be prone to a cross-site scripting vulnerability. This is due to insufficient sanitization of HTML from URI parameters, which will be displayed in web pages that are dynamically generated by the software. The issue exists i...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by