Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

33 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-2592

Malware in sbrugna...

7.5CVSS6.4AI score0.02441EPSS
Exploits0References13
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2007-2814

Malware in sbrugna...

9.3CVSS6.4AI score0.14488EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-0265

Malware in sbrugna...

6.8CVSS6.4AI score0.00541EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.10 views

EUVD-2007-2593

Malware in sbrugna...

6.8CVSS6.4AI score0.11577EPSS
Exploits0References11
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.10 views

TutorialCMS <= 1.01 Authentication Bypass Vulnerability

No description provided by source. TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php myFav.php...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.12 views

TutorialCMS <= 1.00 (search.php search) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w TutorialCMS = 1.00 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code search.php: $search = $REQUEST'search'; $sql = SELECT FROM tutorials WHERE title LIKE...

7.1AI score
Exploits0
Prion
Prionadded 2008/01/15 8:0 p.m.11 views

Sql injection

SQL injection vulnerability in activate.php in TutorialCMS aka Photoshop Tutorials 1.02, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the userName parameter...

6.8CVSS9.1AI score0.00541EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2008/01/15 8:0 p.m.11 views

CVE-2008-0254

SQL injection vulnerability in activate.php in TutorialCMS aka Photoshop Tutorials 1.02, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the userName parameter...

6.8CVSS8.3AI score0.00541EPSS
Exploits1References4
CVE
CVEadded 2008/01/15 7:0 p.m.43 views

CVE-2008-0254

CVE-2008-0254 is a SQL injection vulnerability in TutorialCMS (Photoshop Tutorials) 1.02, affecting activate.php. When magic_quotes_gpc is disabled, remote attackers can inject SQL via the userName parameter. Documented impact is partial confidentiality/integrity/availability with CVSS 2.0 base s...

6.8CVSS8.4AI score0.00541EPSS
Exploits1References4Affected Software1
seebug.org
seebug.orgadded 2008/01/14 12:0 a.m.17 views

TutorialCMS 1.02 (userName) Remote SQL Injection Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register import re class TestPOCPOCBase: vulID = 'SSV-7841' vul ID version = '1' author = 'hh' vulDate = '2008-01-12' createDate =...

7.1AI score
Exploits0
0day.today
0day.todayadded 2008/01/12 12:0 a.m.19 views

TutorialCMS 1.02 (userName) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== TutorialCMS 1.02 userName Remote SQL Injection Vulnerability ============================================================== -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2008/01/12 12:0 a.m.13 views

TutorialCMS 1.02 - Username SQL Injection

TutorialCMS 1.02 - Username SQL Injection -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- TutorialCMS 1.02 Remote SQL Injection Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- bug found by ka0x contact: ka0x01atgmail.com D.O.M TEAM 2008 we are: ka0x, an0de, xarnuz from...

0.6AI score
Exploits0
Exploit DB
Exploit DBadded 2008/01/12 12:0 a.m.39 views

TutorialCMS 1.02 - &#039;Username&#039; SQL Injection

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- TutorialCMS 1.02 Remote SQL Injection Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- bug found by ka0x contact: ka0x01atgmail.com D.O.M TEAM 2008 we are: ka0x, an0de, xarnuz from spain download...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2007/05/25 12:0 a.m.12 views

TutorialCMS &lt;= 1.01 Authentication Bypass Vulnerability

No description provided by source. TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php myFav.php...

7.1AI score
Exploits0
NVD
NVDadded 2007/05/22 9:30 p.m.9 views

CVE-2007-2822

TutorialCMS 1.01 and earlier, when registerglobals is enabled, allows remote attackers to bypass authentication via the 1 loggedIn and 2 activated parameters to a login.php, b headerLinks.php, c submit1.php, d myFav.php, and e userCP.php...

9.3CVSS7AI score0.14488EPSS
Exploits0References6
Prion
Prionadded 2007/05/22 9:30 p.m.8 views

Authentication flaw

TutorialCMS 1.01 and earlier, when registerglobals is enabled, allows remote attackers to bypass authentication via the 1 loggedIn and 2 activated parameters to a login.php, b headerLinks.php, c submit1.php, d myFav.php, and e userCP.php...

9.3CVSS7.5AI score0.14488EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2007/05/22 9:0 p.m.47 views

CVE-2007-2822

TutorialCMS

9.3CVSS7AI score0.14488EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2007/05/22 9:0 p.m.19 views

CVE-2007-2822

TutorialCMS 1.01 and earlier, when registerglobals is enabled, allows remote attackers to bypass authentication via the 1 loggedIn and 2 activated parameters to a login.php, b headerLinks.php, c submit1.php, d myFav.php, and e userCP.php...

7AI score0.14488EPSS
Exploits0References6
exploitpack
exploitpackadded 2007/05/21 12:0 a.m.12 views

TutorialCMS 1.01 - Authentication Bypass

TutorialCMS 1.01 - Authentication Bypass TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php...

0.5AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/21 12:0 a.m.30 views

TutorialCMS 1.01 - Authentication Bypass

TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php myFav.php userCP.php PoC:...

7.4AI score
Exploits0
Rows per page
Query Builder