Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6501

Malware in sbrugna...

6.8CVSS6.4AI score0.01723EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6502

Malware in sbrugna...

7.5CVSS6.4AI score0.00983EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6563

Malware in sbrugna...

6.4CVSS6.4AI score0.01076EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.7 views

ProNews 1.5 admin/change.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, because the application fails to sufficiently...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

ProNews 1.5 lire-avis.php aa Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, because the application fails to sufficiently...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

ProNews 1.5 lire-avis.php aa Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, because the application fails to sufficiently...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/15 7:28 p.m.13 views

CVE-2006-6580

admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other impacts. NOTE: the provenance of this information is unknown; the details are obtained solely from...

6.4CVSS6.6AI score0.01076EPSS
Exploits0References2
CVE
CVE
added 2006/12/15 7:0 p.m.36 views

CVE-2006-6580

The connected sources confirm a vulnerability in ProNews 1.5 where admin/change.php does not verify that a user is authorized to modify news items. This permits remote attackers to add or delete information within an item and potentially cause other impacts. Root cause: missing access control che...

6.4CVSS6.9AI score0.01076EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2006/12/15 7:0 p.m.24 views

CVE-2006-6580

admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other impacts. NOTE: the provenance of this information is unknown; the details are obtained solely from...

6.6AI score0.01076EPSS
Exploits0References2
NVD
NVD
added 2006/12/14 1:28 a.m.12 views

CVE-2006-6519

SQL injection vulnerability in lire-avis.php in ProNews 1.5 allows remote attackers to execute arbitrary SQL commands via the aa parameter...

7.5CVSS8.4AI score0.00983EPSS
Exploits1References3
Cvelist
Cvelist
added 2006/12/14 1:0 a.m.19 views

CVE-2006-6518

Multiple cross-site scripting XSS vulnerabilities in ProNews 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 pseudo, 2 email, 3 date, 4 sujet, 5 message, 6 site, and 7 lien parameters to a admin/change.php, and the 8 aa parameter to b lire-avis.php...

5.8AI score0.01723EPSS
Exploits1References3
CVE
CVE
added 2006/12/14 1:0 a.m.44 views

CVE-2006-6519

CVE-2006-6519 describes an SQL injection in the ProNews 1.5 component, specifically in the file lire-avis.php . The vulnerability is triggered via the aa parameter, allowing remote attackers to execute arbitrary SQL commands. The available documents attribute the issue to improper handling of use...

7.5CVSS8.8AI score0.00983EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2006/12/14 1:0 a.m.41 views

CVE-2006-6518

CVE-2006-6518 affects ProNews 1.5 and involves multiple reflected cross-site scripting (XSS) flaws. The vulnerability is triggered by unsanitized user-controllable input in several parameters: (1) pseudo, (2) email, (3) date, (4) sujet, (5) message, (6) site, and (7) lien to admin/change.php, and...

6.8CVSS6AI score0.01723EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2006/12/14 1:0 a.m.20 views

CVE-2006-6519

SQL injection vulnerability in lire-avis.php in ProNews 1.5 allows remote attackers to execute arbitrary SQL commands via the aa parameter...

8.4AI score0.00983EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2006/12/11 12:0 a.m.23 views

pronews15.txt

ProNews V1.5 -------------------- Vendor site: http://www.scripthp.com/ Product: ProNews V1.5 Vulnerability: XSS & SQL Injection Vulnerability Credits: MrKaLiMaN Reported to Vendor: 01.12.06 Public disclosure: 09.12.06 Description: ------------ XSS permanent:...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/12/10 12:0 a.m.61 views

ProNews V1.5 XSS & SQL Injection

ProNews V1.5 -------------------- Vendor site: http://www.scripthp.com/ Product: ProNews V1.5 Vulnerability: XSS & SQL Injection Vulnerability Credits: MrKaLiMaN Reported to Vendor: 01.12.06 Public disclosure: 09.12.06 Description: ------------ XSS permanent:...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2006/12/09 12:0 a.m.15 views

ProNews 1.5 - lire-avis.php?aa SQL Injection

ProNews 1.5 - lire-avis.php?aa SQL Injection source: https://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, because the application fails to...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2006/12/09 12:0 a.m.9 views

ProNews 1.5 - lire-avis.php?aa Cross-Site Scripting

ProNews 1.5 - lire-avis.php?aa Cross-Site Scripting source: https://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, because the application fails...

Exploits0
exploitpack
exploitpack
added 2006/12/09 12:0 a.m.9 views

ProNews 1.5 - adminchange.php Multiple Cross-Site Scripting Vulnerabilities

ProNews 1.5 - adminchange.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, becau...

Exploits0
Exploit DB
Exploit DB
added 2006/12/09 12:0 a.m.20 views

ProNews 1.5 - 'lire-avis.php?aa' SQL Injection

source: https://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. A...

7AI score
Exploits0
Rows per page
Query Builder