CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2004-2602 affects UberTec Help Center Live (HCL) prior to 1.2.7. It describes a PHP remote file inclusion vulnerability that allows an attacker to execute arbitrary PHP code by passing a URL in the HCL_path parameter to pipe.php. The vulnerability arises from unsafely including user-supplied ...

6.8CVSS7.5AI score0.01931EPSS

Exploits1References7Affected Software1

Cvelist•added 2005/11/29 2:0 a.m.•15 views

CVE-2004-2601

PHP remote file inclusion vulnerability in UberTec Help Center Live HCL allows remote attackers to read local files and possibly execute PHP code via a URL in the SKINinner parameter to inc/skin.php...

6.9AI score0.01453EPSS

Exploits0References5

Cvelist•added 2005/11/29 2:0 a.m.•13 views

CVE-2004-2602

PHP remote file inclusion vulnerability in UberTec Help Center Live HCL before 1.2.7 allows remote attackers to execute arbitrary PHP code via a URL in the HCLpath parameter to pipe.php...

7.5AI score0.01931EPSS

Exploits1References7

Cvelist•added 2005/11/29 2:0 a.m.•12 views

CVE-2004-2603

Cross-site scripting XSS vulnerability in the Search module in UberTec Help Center Live HCL allows remote attackers to inject arbitrary web script or HTML via the find parameter to index.php...

5.7AI score0.01382EPSS

Exploits1References6

NVD•added 2004/12/31 5:0 a.m.•12 views

CVE-2004-2601

6.4CVSS6.9AI score0.01453EPSS

Exploits0References5

NVD•added 2004/12/31 5:0 a.m.•11 views

CVE-2004-2603

Cross-site scripting XSS vulnerability in the Search module in UberTec Help Center Live HCL allows remote attackers to inject arbitrary web script or HTML via the find parameter to index.php...

4.3CVSS5.7AI score0.01382EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by