Lucene search
+L

52 matches found

Prion
Prion
added 2008/10/09 6:14 p.m.11 views

Sql injection

SQL injection vulnerability in login.php in IP Reg 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter...

7.5CVSS9.1AI score0.00967EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2008/10/09 6:0 p.m.45 views

CVE-2008-4523

CVE-2008-4523 describes a SQL injection in login.php for IP Reg 0.4 and earlier, exploitable via the user_name parameter to run arbitrary SQL commands remotely. The vulnerability is evidenced in multiple sources (NVD, CVE listings, and related references) with a CVSS v2 base score of 7.5 (HIGH) a...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2008/10/09 6:0 p.m.23 views

CVE-2008-4523

SQL injection vulnerability in login.php in IP Reg 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter...

8.4AI score0.00967EPSS
Exploits1References4
Prion
Prion
added 2008/01/08 7:46 p.m.12 views

Sql injection

Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote attackers to execute arbitrary SQL commands via the username parameter to actions.php, and unspecified other vectors...

6.8CVSS9.3AI score0.00845EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2008/01/08 7:0 p.m.14 views

CVE-2008-0142

Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote attackers to execute arbitrary SQL commands via the username parameter to actions.php, and unspecified other vectors...

8.6AI score0.00845EPSS
Exploits0References1
Prion
Prion
added 2006/04/25 12:50 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in member.php in 4images 1.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the nickname, probably involving the username parameter in register.php...

2.6CVSS6.2AI score0.01343EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2006/04/25 12:50 p.m.18 views

CVE-2006-2011

Cross-site scripting XSS vulnerability in member.php in 4images 1.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the nickname, probably involving the username parameter in register.php...

2.6CVSS5.7AI score0.01343EPSS
Exploits1References6
NVD
NVD
added 2006/04/11 10:2 a.m.23 views

CVE-2006-1690

Cross-site scripting XSS vulnerability in subscribe.php in MWNewsletter 1.0.0b allows remote attackers to inject arbitrary web script or HTML via the username parameter...

6.8CVSS5.7AI score0.01523EPSS
Exploits0References8
Prion
Prion
added 2006/04/11 10:2 a.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in subscribe.php in MWNewsletter 1.0.0b allows remote attackers to inject arbitrary web script or HTML via the username parameter...

6.8CVSS6.1AI score0.01523EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2006/04/11 10:2 a.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in MWNewsletter 1.0.0b allow remote attackers to execute arbitrary SQL commands via the 1 useremail parameter to a unsubscribe.php or b subscribe.php; or the 2 username parameter to subscribe.php. NOTE: the provenance of this information is unknown; the...

7.5CVSS9AI score0.01214EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2006/04/11 10:2 a.m.19 views

Sql injection

SQL injection vulnerability in MWNewsletter 1.0.0b allows remote attackers to execute arbitrary SQL commands via the username parameter to unsubscribe.php...

7.5CVSS9AI score0.01413EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2006/04/11 10:0 a.m.21 views

CVE-2006-1691

SQL injection vulnerability in MWNewsletter 1.0.0b allows remote attackers to execute arbitrary SQL commands via the username parameter to unsubscribe.php...

8.4AI score0.01413EPSS
Exploits0References8
Rows per page
Query Builder