Lucene search
K

26 matches found

Exploit DB
Exploit DB
added 2008/04/29 12:0 a.m.46 views

SugarCRM Community Edition 4.5.1/5.0.0 - File Disclosure

Name SugarCRM – Local File Disclosure SugarCRM http://www.sugarcrm.com/docs/ReleaseNotes/OpenSourceReleaseNotes4.5.1j/ Advisories SugarReleaseNotes4.5.1j.2.6.html Bug 20522 http://dl.sugarforge.org/sugarcrm/SugarCE5.0Latest/SugarCE5.0.0/ SugarCommunityEditionReleaseNotes5.0c.pdf Bug 20342 Date...

7.4AI score
Exploits0
NVD
NVD
added 2005/05/24 4:0 a.m.18 views

CVE-2005-1695

Multiple cross-site scripting XSS vulnerabilities in the RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allow remote attackers to inject arbitrary web script or HTML via the 1 rssurl parameter to magpieslashbox.php, or the url parameter to 2 magpiesimple.php or 3 magpiedebug.php...

2.6CVSS5.7AI score0.01158EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/05/24 4:0 a.m.18 views

CVE-2005-1697

The RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allows remote attackers to obtain sensitive information via a direct request to simplesmarty.php, which reveals the path in an error message...

6.1AI score0.01125EPSS
Exploits0References1
NVD
NVD
added 2005/05/24 4:0 a.m.15 views

CVE-2005-1697

The RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allows remote attackers to obtain sensitive information via a direct request to simplesmarty.php, which reveals the path in an error message...

5CVSS6.1AI score0.01125EPSS
Exploits0References1
CVE
CVE
added 2005/05/24 4:0 a.m.47 views

CVE-2005-1697

The CVE-2005-1697 issue affects PostNuke’s RSS module (versions 0.750 and 0.760 RC2/RC3). A direct request to simple_smarty.php exposes the installation path via an error message, enabling remote disclosure of sensitive information. Exploit details are not provided in the sources; no patch/versio...

5CVSS6.1AI score0.01125EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2005/05/24 4:0 a.m.52 views

CVE-2005-1695

CVE-2005-1695 affects PostNuke RSS module (versions 0.750, 0.760RC2/RC3). The vulnerability is described as multiple cross-site scripting (XSS) flaws allowing remote injection of script/HTML via parameters: rss_url in magpie_slashbox.php and url in magpie_simple.php/magpie_debug.php. Connected Op...

2.6CVSS5.8AI score0.01158EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder