CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

71 matches found

securityvulns•added 2006/05/20 12:0 a.m.•38 views

Xtremescripts Topsites v1.1

Xtremescripts Topsites v1.1 Homepage: http://www.xtremescripts.com/topsites.php Description: Xtreme Topsites is a popular topsite PHP script for websites. Most commonly used across anime websites at the moment. The topsite will count hits/clicks in and hits out and will rank them on total hits so...

0.8AI score

Exploits0

securityvulns•added 2006/04/09 12:0 a.m.•429 views

Virtual War File İnclusion

Virtual War File nclusion --------------------------------- Site:http://www.vwar.de/ Demo:http://www.vwar.de/demo/ --------------------------------------- File nclusion // get functions $vwarroot = "./"; require $vwarroot . "includes/functionscommon.php"; require $vwarroot...

0.5AI score

Exploits0

NVD•added 2006/01/19 1:3 a.m.•9 views

CVE-2006-0313

Multiple SQL injection vulnerabilities in PDFdirectory before 1.0 allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors involving 1 util.php, 2 userpref.php, 3 user.php, 4 uploadfrm.php, 5 title.php, 6 team.php, 7 stats.php, 8 page.php, 9 org.php, 10 member.php...

7.5CVSS8.5AI score0.01987EPSS

Exploits0References17

Prion•added 2006/01/18 1:7 a.m.•13 views

Sql injection

SQL injection vulnerability in wp-stats.php in GaMerZ WP-Stats 2.0 allows remote attackers to execute arbitrary SQL commands via the author parameter...

7.5CVSS9.1AI score0.00966EPSS

Exploits0References8Affected Software1

NVD•added 2006/01/18 1:7 a.m.•12 views

CVE-2006-0238

SQL injection vulnerability in wp-stats.php in GaMerZ WP-Stats 2.0 allows remote attackers to execute arbitrary SQL commands via the author parameter...

7.5CVSS8.4AI score0.00966EPSS

Exploits0References8

Cvelist•added 2006/01/18 1:0 a.m.•14 views

CVE-2006-0238

SQL injection vulnerability in wp-stats.php in GaMerZ WP-Stats 2.0 allows remote attackers to execute arbitrary SQL commands via the author parameter...

8.4AI score0.00966EPSS

Exploits0References8

CVE•added 2006/01/18 1:0 a.m.•47 views

CVE-2006-0238

CVE-2006-0238 affects GaMerZ WP-Stats 2.0. The WP component wp-stats.php is vulnerable to SQL injection via the author parameter, allowing remote attackers to execute arbitrary SQL commands. No additional exploit details or remediation are provided in the connected documents.

7.5CVSS8.4AI score0.00966EPSS

Exploits0References8Affected Software1

NVD•added 2005/12/31 5:0 a.m.•18 views

CVE-2005-4642

Multiple cross-site scripting XSS vulnerabilities in HydroBB 1.0.0 Beta 2 allow remote attackers to inject arbitrary web script or HTML via the s parameter to 1 search.php, 2 members.php, 3 stats.php, 4 viewforum.php, 5 register.php, 6 usercp.php, 7 groups.php, 8 pms.php, and 9 calendar.php...

4.3CVSS5.8AI score0.01553EPSS

Exploits1References12

CVE•added 2005/05/10 4:0 a.m.•55 views

CVE-2004-2028

CVE-2004-2028 describes a cross-site scripting (XSS) vulnerability in the PHP component used by the e107 CMS, specifically in the stats.php module. The flaw allows remote attackers to inject arbitrary web script or HTML by manipulating the referer parameter sent to log.php. Affected software is e...

4.3CVSS6AI score0.00655EPSS

Exploits0References5Affected Software1

Cvelist•added 2005/05/10 4:0 a.m.•15 views

CVE-2004-2028

Cross-site scripting XSS vulnerability in stats.php in e107 allows remote attackers to inject arbitrary web script or HTML via the referer parameter to log.php...

5.7AI score0.00655EPSS

Exploits0References5

Cvelist•added 2004/03/18 5:0 a.m.•19 views

CVE-2004-0323

Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain privileges via the 1 ppp parameter in viewthread.php, 2 desc parameter in misc.php, 3 tpp parameter in forumdisplay.php, 4 ascdesc parameter in forumdisplay.php, or 5 the addon...

8AI score0.00842EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by