Lucene search
+L

169 matches found

NVD
NVD
added 2006/02/15 11:6 a.m.16 views

CVE-2006-0690

Multiple SQL injection vulnerabilities in TTS Time Tracking Software 3.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.5AI score0.01337EPSS
Exploits0References6
Prion
Prion
added 2006/02/15 11:6 a.m.18 views

Sql injection

Multiple SQL injection vulnerabilities in TTS Time Tracking Software 3.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS9.1AI score0.01337EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2006/02/15 11:6 a.m.17 views

CVE-2006-0691

edituser.php in TTS Time Tracking Software 3.0 does not verify that the name and password are correct, which allows remote attackers to overwrite arbitrary data belonging to any account...

5CVSS6.9AI score0.0279EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/02/15 11:0 a.m.33 views

CVE-2006-0691

edituser.php in TTS Time Tracking Software 3.0 does not verify that the name and password are correct, which allows remote attackers to overwrite arbitrary data belonging to any account...

6.9AI score0.0279EPSS
Exploits0References7
CVE
CVE
added 2006/02/15 11:0 a.m.42 views

CVE-2006-0690

CVE-2006-0690 affects TTS Time Tracking Software 3.0 with multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via unspecified vectors. Public sources (NVD/eVuln) cite remote exploitation and, per eVuln, unauthorized data modification and additional...

7.5CVSS8.5AI score0.01337EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2006/02/15 11:0 a.m.40 views

CVE-2006-0691

CVE-2006-0691 concerns TTS Time Tracking Software 3.0. The vulnerability lies in edituser.php, which does not verify that the provided name and password are correct, enabling remote attackers to overwrite arbitrary data belonging to any account. Affected component: edituser.php in Time Tracking S...

5CVSS6.9AI score0.0279EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/02/15 11:0 a.m.28 views

CVE-2006-0690

Multiple SQL injection vulnerabilities in TTS Time Tracking Software 3.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.5AI score0.01337EPSS
Exploits0References6
CVE
CVE
added 2006/02/15 11:0 a.m.41 views

CVE-2006-0689

CVE-2006-0689 affects TTS Software’s Time Tracking Software (Version 3.0). The vulnerability is a Cross-site Scripting (XSS) flaw in the Registration Form: the UserName parameter is not properly sanitized, allowing remote attackers to inject arbitrary script/HTML. Public disclosures in NVD and re...

4.3CVSS5.7AI score0.01299EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/02/15 11:0 a.m.25 views

CVE-2006-0689

Cross-site scripting XSS vulnerability in the Registration Form in TTS Time Tracking Software 3.0 allows remote attackers to inject arbitrary web script or HTML via the UserName parameter...

5.7AI score0.01299EPSS
Exploits0References6
Rows per page
Query Builder