Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5215

Malware in sbrugna...

5.4CVSS5.5AI score0.00702EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5216

Malware in sbrugna...

8.8CVSS8.8AI score0.00669EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5217

Malware in sbrugna...

5.4CVSS5.5AI score0.00702EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 a.m.7 views

CVE-2019-13949

SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demonstrated by CSRF for an index.php?c=Administrator=update admin password change...

8.8CVSS7.3AI score0.00669EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:30 a.m.6 views

CVE-2019-13950

index.php?c=admin=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment...

5.4CVSS5.6AI score0.00702EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:27 a.m.6 views

CVE-2019-13948

SyGuestBook A5 Version 1.2 allows stored XSS because the isValidData function in include/functions.php does not properly block XSS payloads, as demonstrated by a crafted use of the onerror attribute of an IMG element...

5.4CVSS5.8AI score0.00702EPSS
Exploits1References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.3 views

SyGuestBook A5 Cross-Site Request Forgery Vulnerability

SyGuestBook A5 is a PHP-based open source message board system . A cross-site request forgery vulnerability exists in SyGuestBook A5 version 1.2. An attacker can use this vulnerability to change the administrator password...

8.8CVSS6.9AI score0.00669EPSS
Exploits1References1
OSV
OSV
added 2019/07/18 4:15 p.m.3 views

CVE-2019-13949

SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demonstrated by CSRF for an index.php?c=Administrator&a=update admin password change...

8.8CVSS7.3AI score0.00669EPSS
Exploits1References2
NVD
NVD
added 2019/07/18 4:15 p.m.10 views

CVE-2019-13949

SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demonstrated by CSRF for an index.php?c=Administrator&a=update admin password change...

8.8CVSS8.9AI score0.00669EPSS
Exploits1References2
NVD
NVD
added 2019/07/18 4:15 p.m.17 views

CVE-2019-13948

SyGuestBook A5 Version 1.2 allows stored XSS because the isValidData function in include/functions.php does not properly block XSS payloads, as demonstrated by a crafted use of the onerror attribute of an IMG element...

5.4CVSS5.2AI score0.00702EPSS
Exploits1References2
NVD
NVD
added 2019/07/18 4:15 p.m.9 views

CVE-2019-13950

index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment...

5.4CVSS5.2AI score0.00702EPSS
Exploits1References2
OSV
OSV
added 2019/07/18 4:15 p.m.6 views

CVE-2019-13948

SyGuestBook A5 Version 1.2 allows stored XSS because the isValidData function in include/functions.php does not properly block XSS payloads, as demonstrated by a crafted use of the onerror attribute of an IMG element...

5.4CVSS6AI score0.00702EPSS
Exploits1References2
OSV
OSV
added 2019/07/18 4:15 p.m.2 views

CVE-2019-13950

index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment...

5.4CVSS5.8AI score0.00702EPSS
Exploits1References2
Prion
Prion
added 2019/07/18 4:15 p.m.11 views

Cross site scripting

index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment...

3.5CVSS5.1AI score0.00702EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2019/07/18 4:15 p.m.13 views

Cross site scripting

SyGuestBook A5 Version 1.2 allows stored XSS because the isValidData function in include/functions.php does not properly block XSS payloads, as demonstrated by a crafted use of the onerror attribute of an IMG element...

3.5CVSS5.2AI score0.00702EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2019/07/18 4:15 p.m.11 views

Cross site request forgery (csrf)

SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demonstrated by CSRF for an index.php?c=Administrator&a=update admin password change...

6.8CVSS8.8AI score0.00669EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/07/18 3:57 p.m.19 views

CVE-2019-13950

index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment...

5.2AI score0.00702EPSS
Exploits1References2
CVE
CVE
added 2019/07/18 3:57 p.m.45 views

CVE-2019-13950

CVE-2019-13950 affects SyGuestBook A5 Version 1.2. The issue is a stored XSS in index.php?c=admin&a=index introduced via a reply to a comment. Root cause described in CNVD as lack of proper validation of client-side data by the WEB application. Impact stated in sources as client-side code executi...

5.4CVSS5.1AI score0.00702EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/07/18 3:56 p.m.17 views

CVE-2019-13949

SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demonstrated by CSRF for an index.php?c=Administrator&a=update admin password change...

8.9AI score0.00669EPSS
Exploits1References2
CVE
CVE
added 2019/07/18 3:56 p.m.40 views

CVE-2019-13949

The CVE-2019-13949 entry documents a CSRF vulnerability in SyGuestBook A5 Version 1.2 where there is no CSRF protection. The underlying issue allows an attacker to trigger a request to index.php?c=Administrator&a=update (admin password change) without authentication, enabling unauthorized admin p...

8.8CVSS8.8AI score0.00669EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder