CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-1576

Malware in sbrugna...

6.8CVSS6.4AI score0.01631EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2006-1577

Malware in sbrugna...

7.5CVSS6.4AI score0.012EPSS

Exploits0References7

securityvulns•added 2006/04/12 12:0 a.m.•38 views

[eVuln] QLnews XSS and PHP Code Insertion Vulnerabilities

New eVuln Advisory: QLnews XSS and PHP Code Insertion Vulnerabilities http://evuln.com/vulns/113/summary.html --------------------Summary---------------- eVuln ID: EV0113 CVE: CVE-2006-1575 CVE-2006-1576 Software: QLnews Sowtware's Web Site: http://www.vscripts.pl/ Versions: 1.2 Critical Level:...

7.5CVSS0.9AI score0.01631EPSS

Exploits0

NVD•added 2006/04/02 9:4 p.m.•10 views

CVE-2006-1576

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5CVSS7.5AI score0.012EPSS

Exploits0References6

Prion•added 2006/04/02 9:4 p.m.•12 views

Code injection

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5CVSS7.9AI score0.012EPSS

Exploits0References6Affected Software1

NVD•added 2006/04/02 9:4 p.m.•10 views

CVE-2006-1575

Multiple cross-site scripting XSS vulnerabilities in news.php in QLnews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorx and 2 newsx parameters...

6.8CVSS5.8AI score0.01631EPSS

Exploits0References7

Prion•added 2006/04/02 9:4 p.m.•14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in news.php in QLnews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorx and 2 newsx parameters...

6.8CVSS6.1AI score0.01631EPSS

Exploits0References7Affected Software1

CVE•added 2006/04/02 9:0 p.m.•42 views

CVE-2006-1575

QLnews 1.2 is affected by multiple XSS vulnerabilities in news.php. The issues allow remote attackers to inject arbitrary script/HTML via the autorx and newsx parameters due to inadequate input sanitization. This is documented across sources referencing CVE-2006-1575 (NVD) and eVuln materials not...

6.8CVSS5.8AI score0.01631EPSS

Exploits0References7Affected Software1

Cvelist•added 2006/04/02 9:0 p.m.•13 views

CVE-2006-1576

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5AI score0.012EPSS

Exploits0References6

CVE•added 2006/04/02 9:0 p.m.•41 views

CVE-2006-1576

QLnews 1.2 contains a direct static code injection vulnerability that lets remote authenticated administrators execute arbitrary PHP code by modifying config.php. Root cause is injection via config.php; impact across confidentiality, integrity, and availability is implied in CVSS 2.0. No patch is...

7.5CVSS7.5AI score0.012EPSS

Exploits0References6Affected Software1

Cvelist•added 2006/04/02 9:0 p.m.•12 views

CVE-2006-1575

Multiple cross-site scripting XSS vulnerabilities in news.php in QLnews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorx and 2 newsx parameters...

5.8AI score0.01631EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by