CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-2880

Malware in sbrugna...

4.3CVSS6.4AI score0.01585EPSS

hackapp•added 2016/04/01 10:19 a.m.•13 views

What am I? - Little Riddles - BSD license, Base64 encoded String, Customized SSL vulnerabilities

HackApp vulnerability scanner discovered that application What am I? - Little Riddles published at the 'play' market has multiple vulnerabilities...

0.3AI score

hackapp•added 2016/04/01 10:15 a.m.•7 views

Da Vinci Riddles: Mystery - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Da Vinci Riddles: Mystery published at the 'play' market has multiple vulnerabilities...

1.2AI score

hackapp•added 2016/04/01 10:15 a.m.•28 views

Riddles with answers - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Riddles with answers published at the 'play' market has multiple vulnerabilities...

0.8AI score

hackapp•added 2016/04/01 10:14 a.m.•12 views

Smart Riddles - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Smart Riddles published at the 'play' market has multiple vulnerabilities...

0.3AI score

hackapp•added 2016/04/01 10:12 a.m.•10 views

Riddles. Just riddles. - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Riddles. Just riddles. published at the 'play' market has multiple vulnerabilities...

0.7AI score

NVD•added 2009/08/20 5:30 p.m.•10 views

CVE-2009-2890

Cross-site scripting XSS vulnerability in results.php in PHP Scripts Now Riddles allows remote attackers to inject arbitrary web script or HTML via the searchquery parameter...

4.3CVSS5.8AI score0.01585EPSS

Exploits1References4

CVE•added 2009/08/20 5:0 p.m.•50 views

CVE-2009-2891

CVE-2009-2891 describes an SQL injection in list.php of PHP Scripts Now Riddles, exploitable via the catid parameter. The underlying issue is improper handling of user-supplied input, enabling remote attackers to execute arbitrary SQL commands. Affected component: list.php within the PHP Scripts ...

7.5CVSS8.8AI score0.00169EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/08/20 5:0 p.m.•18 views

CVE-2009-2890

Cross-site scripting XSS vulnerability in results.php in PHP Scripts Now Riddles allows remote attackers to inject arbitrary web script or HTML via the searchquery parameter...

5.8AI score0.01585EPSS

Exploits1References4

CVE•added 2009/08/20 5:0 p.m.•38 views

CVE-2009-2890

CVE-2009-2890 affects the web app PHP Scripts Now Riddles, with a vulnerability in results.php where the searchquery parameter allows remote injection of arbitrary web script or HTML (reflected XSS). Root cause: lack of proper input sanitization on the searchquery parameter. Impact: enables injec...

4.3CVSS5.9AI score0.01585EPSS

Exploits1References4Affected Software1

exploitpack•added 2009/08/20 12:0 a.m.•10 views

PHP Scripts Now Riddles - riddleslist.php?catid SQL Injection

PHP Scripts Now Riddles - riddleslist.php?catid SQL Injection source: https://www.securityfocus.com/bid/44309/info PHP Scripts Now Riddles is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting...

0.5AI score

Exploit DB•added 2009/08/20 12:0 a.m.•121 views

PHP Scripts Now Riddles - '/riddles/list.php?catid' SQL Injection

source: https://www.securityfocus.com/bid/44309/info PHP Scripts Now Riddles is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

7.4AI score

exploitpack•added 2009/08/20 12:0 a.m.•13 views

PHP Scripts Now Riddles - riddlesresults.php?searchQuery Cross-Site Scripting

PHP Scripts Now Riddles - riddlesresults.php?searchQuery Cross-Site Scripting source: https://www.securityfocus.com/bid/44309/info PHP Scripts Now Riddles is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied...

0.2AI score

Exploit DB•added 2009/08/20 12:0 a.m.•23 views

PHP Scripts Now Riddles - '/riddles/results.php?searchQuery' Cross-Site Scripting

7.4AI score

NVD•added 2008/11/19 6:11 p.m.•6 views

CVE-2008-5166

SQL injection vulnerability in riddle.php in Riddles Website 1.2.1 allows remote attackers to execute arbitrary SQL commands via the riddleid parameter...

7.5CVSS8.4AI score0.0051EPSS

Prion•added 2008/11/19 6:11 p.m.•12 views

Sql injection

SQL injection vulnerability in riddle.php in Riddles Website 1.2.1 allows remote attackers to execute arbitrary SQL commands via the riddleid parameter...

7.5CVSS9.1AI score0.0051EPSS

Exploits1References5Affected Software1

CVE•added 2008/11/19 6:0 p.m.•45 views

CVE-2008-5166

CVE-2008-5166 is described across sources as a SQL injection vulnerability in the Riddles Website 1.2.1, exploitable via the riddleid parameter to run arbitrary SQL commands. The affected component is riddle.php; impact is remote code/data access with partial confidentiality/integrity/availabilit...

7.5CVSS8.4AI score0.0051EPSS

Exploits1References5Affected Software1

Cvelist•added 2008/11/19 6:0 p.m.•11 views

CVE-2008-5166

SQL injection vulnerability in riddle.php in Riddles Website 1.2.1 allows remote attackers to execute arbitrary SQL commands via the riddleid parameter...

8.4AI score0.0051EPSS