Lucene search
K

6 matches found

NVD
NVD
added 2006/09/07 12:4 a.m.16 views

CVE-2006-4606

Multiple SQL injection vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 idtemas parameter in busquedatema.php, the 2 cadena parameter in busqueda.php, the 3 idautor parameter in autor.php, the 4 email parameter in lista.php, an...

7.5CVSS8.5AI score0.02374EPSS
Exploits0References15
Cvelist
Cvelist
added 2006/09/07 12:0 a.m.24 views

CVE-2006-4606

Multiple SQL injection vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 idtemas parameter in busquedatema.php, the 2 cadena parameter in busqueda.php, the 3 idautor parameter in autor.php, the 4 email parameter in lista.php, an...

8.5AI score0.02374EPSS
Exploits0References15
Packet Storm
Packet Storm
added 2006/09/07 12:0 a.m.19 views

revista112.txt

Discovered by Sirdarckcat from elhacker.net ------------------------------------------------------------------------------------ Revista 1.1.2 http://php-revista.sourceforge.org ------------------------------------------------------------------------------------ Revista is a simple spanish PHP...

7.4AI score
Exploits0
CVE
CVE
added 2006/09/07 12:0 a.m.49 views

CVE-2006-4606

CVE-2006-4606 affects Longino Jacome’s php-Revista 1.1.2. The vulnerability involves multiple SQL injection flaws in five parameters across different PHP scripts: (1) id_temas in busqueda_tema.php, (2) cadena in busqueda.php, (3) id_autor in autor.php, (4) email in lista.php, and (5) id_articulo ...

7.5CVSS8.5AI score0.02374EPSS
Exploits0References15Affected Software1
Cvelist
Cvelist
added 2006/09/07 12:0 a.m.25 views

CVE-2006-4608

Multiple cross-site scripting XSS vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cadena parameter in busqueda.php and the 2 email parameter in lista.php...

5.8AI score0.04862EPSS
Exploits1References8
CVE
CVE
added 2006/09/07 12:0 a.m.44 views

CVE-2006-4607

CVE-2006-4607 affects Longino Jacome php-Revista 1.1.2. The vulnerability is in admin/index.php, where remote attackers can bypass authentication by setting ID_ADMIN and SUPER_ADMIN to 1. The NVD entry documents an authentication bypass with this parameter manipulation. No explicit remediation is...

7.5CVSS7.3AI score0.03499EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder