Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-4570

Malware in sbrugna...

7.5CVSS6.4AI score0.00967EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2008-4065

Malware in sbrugna...

6.8CVSS6.4AI score0.03108EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-4066

Malware in sbrugna...

7.5CVSS6.4AI score0.02561EPSS
Exploits1References5
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.9 views

Stash 1.0.3 - Multiple SQL Injection Vulnerabilities

No description provided by source. Stash v1.0.3 Admin bypass / Remote File Disclosure AUTHOR : IRCRASH R3d.W0rm Sina Yazdanmehr Discovered by : IRCRASH R3d.W0rm Sina Yazdanmehr Our Site : Http://IRCRASH.COM IRCRASH Team Members : Dr.Crash - R3d.w0rm Sina Yazdanmehr Download :...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2009/12/30 12:0 a.m.29 views

Stash 1.0.3 Cross Site Scripting

Author: Author: Mr.SeCreT E-mail: [email protected] From: Syria http://english.islamweb.net/ Script Information: Script: Stash 1.0.3 Remote XSS Vulnerability Language: PHP Download: http://garr.dl.sourceforge.net/project/nice-stash/Stash%20CMS/1.0.3/stash-1.0.3.zip Vul Code: footer.inc.php: "My In...

Exploits0
seebug.org
seebug.orgadded 2009/12/27 12:0 a.m.17 views

Stash 1.0.3 Remote XSS Vulnerability

No description provided by source. Author: Author: Mr.SeCreT E-mail: [email protected]:[email protected] From: Syria http://english.islamweb.net/ Script Information: Script: Stash 1.0.3 Remote XSS Vulnerability Language: PHP Download:...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2008/10/16 6:0 p.m.3 views

CVE-2008-4590

Multiple SQL injection vulnerabilities in Stash 1.0.3 allow remote attackers to execute arbitrary SQL commands via 1 the username parameter to admin/login.php and 2 the post parameter to admin/news.php...

7.5CVSS6.3AI score0.00967EPSS
Exploits1References5
Cvelist
Cvelistadded 2008/10/16 5:0 p.m.18 views

CVE-2008-4590

Multiple SQL injection vulnerabilities in Stash 1.0.3 allow remote attackers to execute arbitrary SQL commands via 1 the username parameter to admin/login.php and 2 the post parameter to admin/news.php...

8.5AI score0.00967EPSS
Exploits1References4
CVE
CVEadded 2008/10/16 5:0 p.m.46 views

CVE-2008-4590

CVE-2008-4590 affects Stash 1.0.3 and involves multiple SQL injection vulnerabilities. The issues allow remote attackers to execute arbitrary SQL commands via (1) the username parameter to admin/login.php and (2) the post parameter to admin/news.php. The NVD notes a base score of 7.5 (HIGH) with ...

7.5CVSS8.5AI score0.00967EPSS
Exploits1References4Affected Software1
seebug.org
seebug.orgadded 2008/10/10 12:0 a.m.20 views

Stash 1.0.3 (SQL) User Credentials Disclosure Exploit

No description provided by source. !/usr/bin/perl -w User credentials disclosure exploit - stash103exp.pl Gnix [email protected] http://gnix.netsons.org This exploit use an SQL Injection in the file admin/login.php to bypass the login, and then an SQL Injection in the admin/news.php to extract a...

7.1AI score
Exploits0
NVD
NVDadded 2008/09/15 3:14 p.m.15 views

CVE-2008-4080

SQL injection vulnerability in Stash 1.0.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the 1 username parameter to admin/library/authenticate.php and the 2 download parameter to downloadmp3.php. NOTE: some of these details are obtained from thir...

6.8CVSS8.3AI score0.03108EPSS
Exploits0References8
Prion
Prionadded 2008/09/15 3:14 p.m.15 views

Sql injection

SQL injection vulnerability in Stash 1.0.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the 1 username parameter to admin/library/authenticate.php and the 2 download parameter to downloadmp3.php. NOTE: some of these details are obtained from thir...

6.8CVSS9AI score0.03108EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2008/09/15 3:0 p.m.23 views

CVE-2008-4080

SQL injection vulnerability in Stash 1.0.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the 1 username parameter to admin/library/authenticate.php and the 2 download parameter to downloadmp3.php. NOTE: some of these details are obtained from thir...

8.3AI score0.03108EPSS
Exploits0References8
Cvelist
Cvelistadded 2008/09/15 3:0 p.m.19 views

CVE-2008-4081

admin/login.php in Stash 1.0.3 allows remote attackers to bypass authentication and gain administrative access by setting a bsm cookie...

7.1AI score0.02561EPSS
Exploits1References4
CVE
CVEadded 2008/09/15 3:0 p.m.41 views

CVE-2008-4080

CVE-2008-4080 documents a SQL injection vulnerability in Stash 1.0.3, triggered when magic_quotes_gpc is disabled. The affected inputs are the username parameter to admin/library/authenticate.php and the download parameter to downloadmp3.php, allowing remote attackers to execute arbitrary SQL com...

6.8CVSS8.3AI score0.03108EPSS
Exploits0References8Affected Software1
CVE
CVEadded 2008/09/15 3:0 p.m.37 views

CVE-2008-4081

CVE-2008-4081 affects Stash 1.0.3: admin/login.php permits remote authentication bypass by setting a bsm cookie, enabling administrative access. The NVD lists a CVSS 2.0 base score of 7.5 (HIGH) with network access and low attack complexity. No explicit remediation details are provided in the con...

7.5CVSS7.1AI score0.02561EPSS
Exploits1References4Affected Software1
seebug.org
seebug.orgadded 2008/09/10 12:0 a.m.15 views

Stash 1.0.3 Multiple SQL Injection Vulnerabilities

No description provided by source. Stash v1.0.3 Admin bypass / Remote File Disclosure AUTHOR : IRCRASH R3d.W0rm Sina Yazdanmehr Discovered by : IRCRASH R3d.W0rm Sina Yazdanmehr Our Site : Http://IRCRASH.COM IRCRASH Team Members : Dr.Crash - R3d.w0rm Sina Yazdanmehr Download :...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2008/09/10 12:0 a.m.23 views

Stash 1.0.3 Insecure Cookie Handling Vulnerability

No description provided by source. ...:::::stash-1.0.3 Insecure Cookie Handling Vulnerability ::::.... ----------------------- Discoverd By : Ciph3r special tnx to : Iranian hacker & Kurdish Security TEAM E-Mail : [email protected] cms :...

7.1AI score
Exploits0
0day.today
0day.todayadded 2008/09/09 12:0 a.m.18 views

Stash 1.0.3 Multiple SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ================================================== Stash 1.0.3 Multiple SQL Injection Vulnerabilities ================================================== AUTHOR : IRCRASH R3d.W0rm Sina Yazdanmehr Download :...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2008/09/09 12:0 a.m.7 views

Stash 1.0.3 - Multiple SQL Injections

Stash 1.0.3 - Multiple SQL Injections Stash v1.0.3 Admin bypass / Remote File Disclosure AUTHOR : IRCRASH R3d.W0rm Sina Yazdanmehr Discovered by : IRCRASH R3d.W0rm Sina Yazdanmehr Our Site : Http://IRCRASH.COM IRCRASH Team Members : Dr.Crash - R3d.w0rm Sina Yazdanmehr Download :...

0.4AI score
Exploits0
Rows per page
Query Builder