Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-5667

Malware in sbrugna...

6.4CVSS6.1AI score0.02207EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-5665

Malware in sbrugna...

6CVSS6.1AI score0.04938EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-5466

Malware in sbrugna...

9CVSS6.1AI score0.02341EPSS
Exploits1References11
UbuntuCve
UbuntuCve
added 2007/10/29 8:46 p.m.28 views

CVE-2007-5695

Open redirect vulnerability in command.php in SiteBar 3.3.8 allows remote attackers to redirect users to arbitrary web sites via a URL in the forward parameter in a Log In action...

6.4CVSS6AI score0.02207EPSS
Exploits1References1
Prion
Prion
added 2007/10/29 8:46 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in SiteBar 3.3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter to integrator.php; 2 the token parameter in a New Password action, 3 the nidacl parameter in a Folder Properties action, or 4 the uid parameter...

4.3CVSS5.7AI score0.04772EPSS
Exploits3References14Affected Software1
UbuntuCve
UbuntuCve
added 2007/10/29 8:46 p.m.31 views

CVE-2007-5693

Eval injection vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the edit parameter in an upd cmd action, a different vulnerability than CVE-2007-5492...

6CVSS6.2AI score0.04938EPSS
Exploits1References1
Prion
Prion
added 2007/10/29 8:46 p.m.20 views

Design/Logic Flaw

Eval injection vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the edit parameter in an upd cmd action, a different vulnerability than CVE-2007-5492...

6CVSS7.3AI score0.04938EPSS
Exploits2References10Affected Software1
UbuntuCve
UbuntuCve
added 2007/10/29 8:46 p.m.26 views

CVE-2007-5692

Multiple cross-site scripting XSS vulnerabilities in SiteBar 3.3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter to integrator.php; 2 the token parameter in a New Password action, 3 the nidacl parameter in a Folder Properties action, or 4 the uid parameter...

4.3CVSS6AI score0.04772EPSS
Exploits1References1
Prion
Prion
added 2007/10/29 8:46 p.m.18 views

Path traversal

Absolute path traversal vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to read arbitrary files via an absolute path in the dir parameter, a different vulnerability than CVE-2007-5491...

6.8CVSS6.2AI score0.07563EPSS
Exploits2References10Affected Software1
NVD
NVD
added 2007/10/29 8:46 p.m.22 views

CVE-2007-5692

Multiple cross-site scripting XSS vulnerabilities in SiteBar 3.3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter to integrator.php; 2 the token parameter in a New Password action, 3 the nidacl parameter in a Folder Properties action, or 4 the uid parameter...

4.3CVSS5.5AI score0.04772EPSS
Exploits1References14
Prion
Prion
added 2007/10/29 8:46 p.m.21 views

Open redirect

Open redirect vulnerability in command.php in SiteBar 3.3.8 allows remote attackers to redirect users to arbitrary web sites via a URL in the forward parameter in a Log In action...

6.4CVSS6.6AI score0.02207EPSS
Exploits1References10Affected Software1
NVD
NVD
added 2007/10/29 8:46 p.m.22 views

CVE-2007-5695

Open redirect vulnerability in command.php in SiteBar 3.3.8 allows remote attackers to redirect users to arbitrary web sites via a URL in the forward parameter in a Log In action...

6.4CVSS6.4AI score0.02207EPSS
Exploits1References10
Cvelist
Cvelist
added 2007/10/29 8:0 p.m.35 views

CVE-2007-5693

Eval injection vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the edit parameter in an upd cmd action, a different vulnerability than CVE-2007-5492...

7.1AI score0.04938EPSS
Exploits1References10
Cvelist
Cvelist
added 2007/10/29 8:0 p.m.39 views

CVE-2007-5692

Multiple cross-site scripting XSS vulnerabilities in SiteBar 3.3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter to integrator.php; 2 the token parameter in a New Password action, 3 the nidacl parameter in a Folder Properties action, or 4 the uid parameter...

5.4AI score0.04772EPSS
Exploits1References14
CVE
CVE
added 2007/10/29 8:0 p.m.74 views

CVE-2007-5692

SiteBar 3.3.8 (and related releases) is affected by CVE-2007-5692 among several XSS issues. The vulnerabilities permit remote attackers to inject arbitrary scripts/HTML via multiple parameters (lang, token, nid_acl, uid, target) across integrator.php, New Password, Folder Properties, Modify User,...

4.3CVSS5.4AI score0.04772EPSS
Exploits1References14Affected Software1
Packet Storm
Packet Storm
added 2007/10/22 12:0 a.m.42 views

NDSA20071016.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Nth Dimension Security Advisory NDSA20071016 Date: 16th October 2007 Author: Tim Brown URL: / Product: SiteBar 3.3.8 Vendor: Ondřej Brablc, David Szego and SiteBar Team Risk: High Summary This advisory comes in 4 related parts: 1 SiteBar application h...

9CVSS6.3AI score0.02341EPSS
Exploits2
Prion
Prion
added 2007/10/17 7:17 p.m.23 views

Directory traversal

Directory traversal vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter...

9CVSS6.3AI score0.02341EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2007/10/17 7:17 p.m.25 views

CVE-2007-5492

Static code injection vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the value parameter...

4.6CVSS7.2AI score0.01395EPSS
Exploits1References11
UbuntuCve
UbuntuCve
added 2006/06/30 1:5 a.m.28 views

CVE-2006-3320

Cross-site scripting XSS vulnerability in command.php in SiteBar 3.3.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the command parameter...

2.6CVSS6.1AI score0.02031EPSS
Exploits2References1
CVE
CVE
added 2006/06/30 1:0 a.m.63 views

CVE-2006-3320

SiteBar 3.3.8 and earlier are affected by a cross‑site scripting (XSS) vulnerability in command.php via the command parameter. The Debian advisory DSA-1130-1 and OpenVAS entries confirm XSS due to missing input validation, with fixes delivered in Debian stable to 3.2.6-7.1 and in sid to 3.3.8-1.1...

2.6CVSS5.6AI score0.02031EPSS
Exploits2References13Affected Software1
Rows per page
Query Builder