Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-7057

Malware in sbrugna...

4.3CVSS6.4AI score0.02003EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-7056

Malware in sbrugna...

7.5CVSS6.4AI score0.02082EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-7058

Malware in sbrugna...

6.8CVSS6.4AI score0.02016EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-3567

Malware in sbrugna...

4.3CVSS6.4AI score0.01571EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3566

Malware in sbrugna...

7.5CVSS6.4AI score0.01196EPSS
Exploits0References7
Prion
Prion
added 2009/08/27 8:30 p.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in Qsoft K-Rate Premium allow remote attackers to execute arbitrary SQL commands via 1 the $id variable in admin/includes/delecpac.php, 2 $ordorderid variable in payments/paymentreceived.php, 3 $id variable in includes/functions.php, and 4 unspecified...

7.5CVSS9.3AI score0.02082EPSS
Exploits0References5
Prion
Prion
added 2009/08/27 8:30 p.m.22 views

Design/Logic Flaw

Unspecified vulnerability in the Manage Templates feature in Qsoft K-Rate Premium allows remote attackers to execute arbitrary PHP code via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.8CVSS7.9AI score0.02016EPSS
Exploits0References4
Prion
Prion
added 2009/08/27 8:30 p.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Qsoft K-Rate Premium allow remote attackers to inject arbitrary web script or HTML via the blog, possibly the 1 Title and 2 Text fields; 3 the gallery, possibly the Description field in Your Pictures; 4 the forum, possibly the Your Message fiel...

4.3CVSS6.2AI score0.02003EPSS
Exploits0References8
NVD
NVD
added 2009/08/27 8:30 p.m.16 views

CVE-2008-7097

Multiple SQL injection vulnerabilities in Qsoft K-Rate Premium allow remote attackers to execute arbitrary SQL commands via 1 the $id variable in admin/includes/delecpac.php, 2 $ordorderid variable in payments/paymentreceived.php, 3 $id variable in includes/functions.php, and 4 unspecified...

7.5CVSS8.5AI score0.02082EPSS
Exploits0References5
NVD
NVD
added 2009/08/27 8:30 p.m.21 views

CVE-2008-7098

Multiple cross-site scripting XSS vulnerabilities in Qsoft K-Rate Premium allow remote attackers to inject arbitrary web script or HTML via the blog, possibly the 1 Title and 2 Text fields; 3 the gallery, possibly the Description field in Your Pictures; 4 the forum, possibly the Your Message fiel...

4.3CVSS5.9AI score0.02003EPSS
Exploits0References8
CVE
CVE
added 2009/08/27 8:0 p.m.50 views

CVE-2008-7099

CVE-2008-7099 concerns a vulnerability in the Manage Templates feature of Qsoft K-Rate Premium that could allow remote attackers to execute arbitrary PHP code. The available sources identify the affected product as Qsoft K-Rate Premium and specify the vulnerability as arising in the Manage Templa...

6.8CVSS7.5AI score0.02016EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2009/08/27 8:0 p.m.50 views

CVE-2008-7097

Qsoft K-Rate Premium is affected by multiple SQL injection flaws (CVE-2008-7097). The vulnerabilities affect PHP-based paths including admin/includes/dele_cpac.php (via $id), payments/payment_received.php (via $ord[order_id]), includes/functions.php (via $id), and modules/chat.php (unnamed variab...

7.5CVSS8.8AI score0.02082EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2009/08/27 8:0 p.m.62 views

CVE-2008-7098

CVE-2008-7098 involves multiple cross-site scripting (XSS) vulnerabilities in the Qsoft K-Rate Premium software. According to the NVD entry, remote attackers may inject arbitrary script or HTML via various input points: the blog (Title/Text), the Your Pictures gallery (Description), the forum (Yo...

4.3CVSS6AI score0.02003EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2009/08/27 8:0 p.m.25 views

CVE-2008-7097

Multiple SQL injection vulnerabilities in Qsoft K-Rate Premium allow remote attackers to execute arbitrary SQL commands via 1 the $id variable in admin/includes/delecpac.php, 2 $ordorderid variable in payments/paymentreceived.php, 3 $id variable in includes/functions.php, and 4 unspecified...

8.5AI score0.02082EPSS
Exploits0References5
Cvelist
Cvelist
added 2009/08/27 8:0 p.m.29 views

CVE-2008-7098

Multiple cross-site scripting XSS vulnerabilities in Qsoft K-Rate Premium allow remote attackers to inject arbitrary web script or HTML via the blog, possibly the 1 Title and 2 Text fields; 3 the gallery, possibly the Description field in Your Pictures; 4 the forum, possibly the Your Message fiel...

5.9AI score0.02003EPSS
Exploits0References8
Prion
Prion
added 2008/08/10 9:41 p.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Qsoft K-Links allows remote attackers to inject arbitrary web script or HTML via the loginmessage parameter in a login action...

4.3CVSS6.1AI score0.01571EPSS
Exploits0References5
Prion
Prion
added 2008/08/10 9:41 p.m.17 views

Sql injection

Multiple SQL injection vulnerabilities in Qsoft K-Links allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to visit.php, or the PATHINFO to the default URI under 2 report/, 3 addreview/, or 4 refer/...

7.5CVSS9.3AI score0.01196EPSS
Exploits0References6
NVD
NVD
added 2008/08/10 9:41 p.m.15 views

CVE-2008-3580

Multiple SQL injection vulnerabilities in Qsoft K-Links allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to visit.php, or the PATHINFO to the default URI under 2 report/, 3 addreview/, or 4 refer/...

7.5CVSS8.6AI score0.01196EPSS
Exploits0References6
NVD
NVD
added 2008/08/10 9:41 p.m.13 views

CVE-2008-3581

Cross-site scripting XSS vulnerability in index.php in Qsoft K-Links allows remote attackers to inject arbitrary web script or HTML via the loginmessage parameter in a login action...

4.3CVSS5.7AI score0.01571EPSS
Exploits0References5
Cvelist
Cvelist
added 2008/08/10 9:0 p.m.34 views

CVE-2008-3581

Cross-site scripting XSS vulnerability in index.php in Qsoft K-Links allows remote attackers to inject arbitrary web script or HTML via the loginmessage parameter in a login action...

5.7AI score0.01571EPSS
Exploits0References5
Rows per page
Query Builder