Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-1236

Malware in sbrugna...

7.5CVSS6.4AI score0.011EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-1237

Malware in sbrugna...

4.3CVSS6.4AI score0.01605EPSS
Exploits1References4
0day.today
0day.today
added 2012/06/22 12:0 a.m.19 views

Powie pFile 1.01 SQL injection vulnerability

Exploit for php platform in category web applications +----------------------------------------------------------------------+ Exploit Title: Powie pFile 1.01 SQL injection vulnerability Google Dork: inurl:pfile/file.php?id= intext:"-- pFile 1.01 OS" Date: 22/06/2012 Exploit Author: Tunisian...

7.1AI score
Exploits0
NVD
NVD
added 2012/02/24 1:55 p.m.18 views

CVE-2012-1211

Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...

4.3CVSS5.7AI score0.01605EPSS
Exploits1References3
Prion
Prion
added 2012/02/24 1:55 p.m.19 views

Sql injection

SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.011EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2012/02/24 1:55 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...

4.3CVSS6.1AI score0.01605EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2012/02/20 7:0 p.m.20 views

CVE-2012-1210

SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.011EPSS
Exploits1References3
CVE
CVE
added 2012/02/20 7:0 p.m.46 views

CVE-2012-1211

CVE-2012-1211: XSS in Powie pFile 1.02 via pfile/kommentar.php (filecat parameter). Affected component: Powie pFile 1.02; vulnerability described as cross-site scripting, enabling remote script/HTML injection. CVSS v2 base score 4.3 (Medium) with network attack vector, no authentication, partial ...

4.3CVSS5.9AI score0.01605EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2012/02/20 7:0 p.m.47 views

CVE-2012-1210

CVE-2012-1210 describes an SQL injection in Powie pFile 1.02, specifically in pfile/file.php, exploitable via the id parameter to allow remote execution of arbitrary SQL commands. The CVSS v2 base score is 7.5 (HIGH) with network access, low attack complexity, no authentication, and partial impac...

7.5CVSS8.7AI score0.011EPSS
Exploits1References3Affected Software1
Exploit DB
Exploit DB
added 2012/02/13 12:0 a.m.21 views

Powie pFile 1.02 - '/pfile/file.php?id' SQL Injection

source: https://www.securityfocus.com/bid/51982/info pfile is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credential...

7.4AI score
Exploits0
Rows per page
Query Builder