CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-1431

Malware in sbrugna...

7.5CVSS6.4AI score0.00763EPSS

Exploits1References3

seebug.org•added 2014/07/01 12:0 a.m.•11 views

UApplication UGuestbook 1.0 Index.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21426/info Uapplication Uguestbook is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

7.1AI score

Exploits0

NVD•added 2007/02/07 11:28 a.m.•11 views

CVE-2007-0815

Cross-site scripting XSS vulnerability in imagesarchive.asp in Uapplication Uphotogallery 1.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the s parameter. NOTE: the thumbnails.asp vector is already covered by CVE-2006-3023...

4.3CVSS5.2AI score0.00427EPSS

Exploits0References5

Prion•added 2007/02/07 11:28 a.m.•15 views

Cross site scripting

4.3CVSS5.6AI score0.00427EPSS

Exploits0References5Affected Software1

securityvulns•added 2006/12/05 12:0 a.m.•39 views

[Aria-Security Team] uGestBook SQL Injection Vuln

Aria-Security Team Advisory www.Aria-security.Com For English www.Aria-Security.net For Persian Original Advisory http://www.aria-security.com/forum/showthread.php?t=64 ----------------------------------------------------------- Software: UGestbook Method: SQL INJECTION Vendor: uapplication.com...

2.2AI score

Exploits0

CVE•added 2006/12/04 11:0 a.m.•52 views

CVE-2006-6247

CVE-2006-6247 concerns multiple SQL injection vulnerabilities in Uapplication UPhotoGallery 1.1. The issue allows remote attackers to execute arbitrary SQL commands through the ci parameter to slideshow.asp or thumbnails.asp. The vulnerability is within the application’s handling of input without...

7.5CVSS8.9AI score0.02318EPSS

Exploits1References6Affected Software1

Exploit DB•added 2006/12/04 12:0 a.m.•18 views

UApplication Uguestbook 1.0 - 'index.asp' SQL Injection

source: https://www.securityfocus.com/bid/21426/info Uapplication Uguestbook is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access...

7.4AI score

Exploits0

exploitpack•added 2006/12/04 12:0 a.m.•17 views

UApplication Uguestbook 1.0 - index.asp SQL Injection

UApplication Uguestbook 1.0 - index.asp SQL Injection source: https://www.securityfocus.com/bid/21426/info Uapplication Uguestbook is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

8.7AI score

Exploits0

CVE•added 2006/06/15 10:0 a.m.•59 views

CVE-2006-3023

CVE-2006-3023 describes multiple cross-site scripting (XSS) vulnerabilities in thumbnails.asp of the Uapplication Uphotogallery 1.1 (and earlier). The issue allows remote attackers to inject arbitrary web script or HTML via the (1) s and (2) block parameters. The public description confirms affec...

4.3CVSS5.7AI score0.00409EPSS

Exploits0References4Affected Software1

CVE•added 2005/05/03 4:0 a.m.•32 views

CVE-2005-1428

The CVE-2005-1428 entry concerns edit_image.asp in Uapplication Uphotogallery, where remote attackers can upload arbitrary files. The vulnerability enables an attacker to affect confidentiality, integrity, and availability (C/P/I/P), with a CVSSv2 base score of 7.5 (NETWORK vector, low attack com...

7.5CVSS7.3AI score0.00763EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by