CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2006-1576

Malware in sbrugna...

6.8CVSS6.4AI score0.01488EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•7 views

EUVD-2006-1577

Malware in sbrugna...

7.5CVSS6.4AI score0.01709EPSS

Exploits0References7

securityvulns•added 2006/04/12 12:0 a.m.•56 views

[eVuln] QLnews XSS and PHP Code Insertion Vulnerabilities

New eVuln Advisory: QLnews XSS and PHP Code Insertion Vulnerabilities http://evuln.com/vulns/113/summary.html --------------------Summary---------------- eVuln ID: EV0113 CVE: CVE-2006-1575 CVE-2006-1576 Software: QLnews Sowtware's Web Site: http://www.vscripts.pl/ Versions: 1.2 Critical Level:...

7.5CVSS0.9AI score0.01709EPSS

Exploits0

Prion•added 2006/04/02 9:4 p.m.•17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in news.php in QLnews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorx and 2 newsx parameters...

6.8CVSS6.1AI score0.01488EPSS

Exploits0References7Affected Software1

NVD•added 2006/04/02 9:4 p.m.•11 views

CVE-2006-1575

Multiple cross-site scripting XSS vulnerabilities in news.php in QLnews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorx and 2 newsx parameters...

6.8CVSS5.8AI score0.01488EPSS

Exploits0References7

Prion•added 2006/04/02 9:4 p.m.•15 views

Code injection

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5CVSS7.9AI score0.01709EPSS

Exploits0References6Affected Software1

NVD•added 2006/04/02 9:4 p.m.•17 views

CVE-2006-1576

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5CVSS7.5AI score0.01709EPSS

Exploits0References6

CVE•added 2006/04/02 9:0 p.m.•42 views

CVE-2006-1576

QLnews 1.2 contains a direct static code injection vulnerability that lets remote authenticated administrators execute arbitrary PHP code by modifying config.php. Root cause is injection via config.php; impact across confidentiality, integrity, and availability is implied in CVSS 2.0. No patch is...

7.5CVSS7.5AI score0.01709EPSS

Exploits0References6Affected Software1

CVE•added 2006/04/02 9:0 p.m.•45 views

CVE-2006-1575

QLnews 1.2 is affected by multiple XSS vulnerabilities in news.php. The issues allow remote attackers to inject arbitrary script/HTML via the autorx and newsx parameters due to inadequate input sanitization. This is documented across sources referencing CVE-2006-1575 (NVD) and eVuln materials not...

6.8CVSS5.8AI score0.01488EPSS

Exploits0References7Affected Software1

Cvelist•added 2006/04/02 9:0 p.m.•14 views

CVE-2006-1575

Multiple cross-site scripting XSS vulnerabilities in news.php in QLnews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorx and 2 newsx parameters...

5.8AI score0.01488EPSS

Exploits0References7

Cvelist•added 2006/04/02 9:0 p.m.•18 views

CVE-2006-1576

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5AI score0.01709EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by