Lucene search
+L

110 matches found

Exploit DB
Exploit DB
added 2004/05/04 12:0 a.m.76 views

PHPX < 3.26 - Multiple Vulnerabilities

PHPX Multiple Vulnerabilities Vendor: PHPX Product: PHPX Version: ","","",""; foreach$checkArray as $c if substrcount...

5CVSS6.8AI score0.10708EPSS
Exploits3
CVE
CVE
added 2004/03/18 5:0 a.m.54 views

CVE-2004-0249

CVE-2004-0249 affects PHPX 2.0–3.2.4. The vulnerability arises from allowing an attacker to modify the cookie PXL to reference a different userID, enabling remote access to other accounts. This leads to complete confidentiality and integrity impact. The NVD metrics indicate a network-accessible, ...

10CVSS7.3AI score0.04931EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2004/03/18 5:0 a.m.19 views

CVE-2004-0249

PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID...

6.9AI score0.04931EPSS
Exploits1References6
Cvelist
Cvelist
added 2004/03/18 5:0 a.m.26 views

CVE-2004-0248

Cross-site scripting vulnerability XSS in PHPX 3.2.3 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into 1 keywords argument of main.inc.php, 2 body argument of help.inc.php, or 3 the subject field in Personal Messages and Forum...

6.5AI score0.0149EPSS
Exploits1References5
CVE
CVE
added 2004/03/18 5:0 a.m.49 views

CVE-2004-0248

CVE-2004-0248 describes a cross-site scripting (XSS) vulnerability in PHPX 3.2.3. The issue allows remote attackers to run arbitrary script as another user by injecting HTML or script into three inputs: the keywords argument of main.inc.php, the body argument of help.inc.php, or the subject field...

6.8CVSS6.8AI score0.0149EPSS
Exploits1References5Affected Software1
securityvulns
securityvulns
added 2004/03/17 12:0 a.m.32 views

PHPX 2.x - 3.2.4

PHPX 3.2.4 http://www.phpx.org Versions Affected: PHPX 2.x - 3.2.4 Type of bug: Session Hi-jacking/Admin Access via Cookies Impact: Ability to steal another users account Found-by: HelloWorld Ryan Wray Vendor: Notified Table Of Contents ===================== 1 The Program 2 The Problem 3 The Proo...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2004/03/17 12:0 a.m.42 views

phpx324.txt

PHPX 3.2.4 http://www.phpx.org Versions Affected: PHPX 2.x - 3.2.4 Type of bug: Session Hi-jacking/Admin Access via Cookies Impact: Ability to steal another users account Found-by: HelloWorld Ryan Wray Vendor: Notified Table Of Contents ===================== 1 The Program 2 The Problem 3 The Proo...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/02/04 12:0 a.m.37 views

Multiple Vulnerabilities in PHPX

Title: Multiple Vulnerabilities in PHPX By: Manuel Lpez [email protected] FROM IST libres.irc-hispano.org, IST Efnet. Url: http://www.phpx.org Description: PHPX is a web portal system, blog, Content Management System CMS, forums, and more. PHPX is designed to allow everyone to be able to have...

1.1AI score
Exploits0
exploitpack
exploitpack
added 2004/02/03 12:0 a.m.19 views

PHPX 3.2.3 - Multiple Vulnerabilities

PHPX 3.2.3 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/9569/info Multiple vulnerabilities were reported in PHPX. The specific issues include cross-site scripting, HTML injection and account hijacking via specially crafted cookies. These issues were reported to exist in PH...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/02/03 12:0 a.m.27 views

PHPX 3.2.3 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/9569/info Multiple vulnerabilities were reported in PHPX. The specific issues include cross-site scripting, HTML injection and account hijacking via specially crafted cookies. These issues were reported to exist in PHPX 3.2.3. Earlier versions are also...

7AI score
Exploits0
Rows per page
Query Builder