CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

199 matches found

Cvelist•added 2006/09/13 11:0 p.m.•17 views

CVE-2006-4766

Directory traversal vulnerability in print.php in Stefan Ernst Newsscript aka WM-News 0.5 beta allows remote attackers to read arbitrary files via a .. dot dot in the ide parameter...

6.7AI score0.05241EPSS

Exploits0References5

0day.today•added 2006/09/13 12:0 a.m.•17 views

Newsscript <= 0.5 Remote and Local File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================= Newsscript 2 3 27 include$filename; The second flaw is due to an input validation error in the "article.php" script that does not validate the "ide" parameter, which could be...

7.1AI score

Exploits0

securityvulns•added 2006/09/13 12:0 a.m.•41 views

Newsscript version 0.5 (print.php) Local File Inclusion Vulnerability

Subject: --- "Newsscript version 0.5 print.php Local File Inclusion Vulnerability " Vulnerable version: --- "Newsscript version 0.5" Vendor URL: --- Emaill - [email protected] --- Website - http://webmaster-journal.com Available in: ---http://www.comscripts.com/scripts/php.wm-news.203.ht...

0.3AI score

Exploits0

securityvulns•added 2006/06/15 12:0 a.m.•35 views

Web-CMS <<--1.0 "print.php" SQL injection

============================================= Discovered By: CrAzY CrAcKeR Site:www.alshmokh.com I want to thank my friend:- nono225-mHOn-rageh-Lover Hacker-Sw33t h4ck3r Breeeeh-BoNym-Rootshill-LiNuXrOOt-SauDiVirUs ============================================= Example:- /cms/print.php?id=SQL...

0.7AI score

Exploits0

Prion•added 2006/06/06 8:6 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Print.PHP in VisionGate Portal System allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.00297EPSS

Exploits0References1

NVD•added 2006/06/06 8:6 p.m.•9 views

CVE-2006-2846

4.3CVSS5.6AI score0.00297EPSS

Exploits0References1

CVE•added 2006/06/06 8:3 p.m.•47 views

CVE-2006-2846

CVE-2006-2846 describes a Cross-site scripting (XSS) vulnerability in the VisionGate Portal System, specifically in Print.PHP. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. The underlying root cause is an XSS flaw in the Print.PHP component; ...

4.3CVSS5.6AI score0.00297EPSS

Exploits0References1Affected Software1

Cvelist•added 2006/06/06 8:3 p.m.•13 views

CVE-2006-2846

5.6AI score0.00297EPSS

Exploits0References1

CVE•added 2006/04/26 6:0 p.m.•36 views

CVE-2006-2040

Photokorn versions 1.53 and 1.542 are affected by multiple SQL injection vulnerabilities that allow remote attackers to manipulate SQL via parameters in index.php (cat, pic, page), postcard.php (id), and print.php (cat). The NVD entry confirms remote code execution of arbitrary SQL commands with ...

6.4CVSS8.5AI score0.02816EPSS

Exploits1References9Affected Software1

NVD•added 2006/04/20 6:6 p.m.•17 views

CVE-2006-1918

Multiple cross-site scripting XSS vulnerabilities in Papoo 2.1.5 allow remote attackers to inject arbitrary web script or HTML via the menuid parameter to 1 index.php or 2 forum.php, or the 3 reporeidprint parameter to print.php...

2.6CVSS5.8AI score0.00406EPSS

Exploits0References3

Prion•added 2006/04/20 6:6 p.m.•20 views

Cross site scripting

2.6CVSS6.1AI score0.00406EPSS

Exploits0References3Affected Software1

CVE•added 2006/04/20 6:0 p.m.•61 views

CVE-2006-1918

CVE-2006-1918 affects Papoo 2.1.5. The vulnerability is multiple cross-site scripting (XSS) flaws exploitable via the menuid parameter in index.php or forum.php, and the reporeid_print parameter in print.php. The root cause is improper sanitization of input leading to script/HTML injection. Docum...

2.6CVSS5.8AI score0.00406EPSS

Exploits0References3Affected Software1

Cvelist•added 2006/04/20 6:0 p.m.•18 views

CVE-2006-1918

5.8AI score0.00406EPSS

Exploits0References3

NVD•added 2006/04/20 10:2 a.m.•10 views

CVE-2006-1893

Cross-site scripting XSS vulnerability in print.php in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

6.8CVSS5.7AI score0.00416EPSS

Exploits1References4

Prion•added 2006/04/20 10:2 a.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in print.php in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

6.8CVSS6.1AI score0.00416EPSS

Exploits1References4Affected Software1

CVE•added 2006/04/20 10:0 a.m.•35 views

CVE-2006-1893

CVE-2006-1893 describes a cross-site scripting (XSS) vulnerability in the print.php component of ar-blog 5.2, exploitable via the id parameter to inject arbitrary script/HTML. The vulnerability is documented across multiple sources (NVD, CVE List, PRION, etc.), with the impact described as enabli...

6.8CVSS5.7AI score0.00416EPSS

Exploits1References4Affected Software1