CVE-2025-24667 WordPress Small Package Quotes Plugin <= 5.2.17 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in enituretechnology Small Package Quotes – Worldwide Express Edition small-package-quotes-wwe-edition allows SQL Injection.This issue affects Small Package Quotes – Worldwide Express Edition: from n/...

CVE-2025-24667 WordPress Small Package Quotes Plugin <= 5.2.17 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in enituretechnology Small Package Quotes – Worldwide Express Edition small-package-quotes-wwe-edition allows SQL Injection.This issue affects Small Package Quotes – Worldwide Express Edition: from n/...

CVE-2025-24667

CVE-2025-24667 is a SQL Injection in WordPress Small Package Quotes – Worldwide Express Edition (affected up to version 5.2.17). The CVE entry specifies improper neutralization of SQL commands in Small Package Quotes – Worldwide Express Edition, with an impact described as Confidentiality High an...

PT-2024-25921 · Unknown · Hc Mailinspector

Name of the Vulnerable Software and Affected Versions: HSC Mailinspector versions 5.2.17-3 through 5.2.18 Description: An Unauthenticated Path Traversal vulnerability exists in the /public/loader.php file. The path parameter does not properly filter whether the file and directory passed are part ...

CVE-2021-26938

A stored XSS issue exists in henriquedornas 5.2.17 via online live chat. NOTE: Third parties report that no such product exists. That henriquedornas is the web design agency and 5.2.17 is simply the PHP version running on this hosts...

PT-2021-17187 · Unknown +1 · Henriquedornas +1

Name of the Vulnerable Software and Affected Versions: henriquedornas version 5.2.17 Description: A stored XSS issue exists via online live chat. It is reported that henriquedornas is a web design agency and 5.2.17 refers to the PHP version running on the host. Recommendations: For version 5.2.17...

Input validation

IBM Tivoli Storage Productivity Center IBM Spectrum Control Standard Edition 5.2.1 through 5.2.17 could allow a remote attacker to execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 157063...

Horde Groupware Webmail Edition Operating System Command Injection Vulnerability

Horde Groupware Webmail Edition is a free enterprise browser based on the Communication Suite from Horde, Inc.HordeCrypt is an encryption/decryption library for working with PGP data. An OS command injection vulnerability exists in HordeCrypt versions prior to 2.7.6 used in Horde Groupware Webmai...

WHMCS多个未明安全漏洞

Bugtraq ID:66498 WHMCS是一套专为主机业务及其他在线交易开发的客户管理，财务，支持软件。 WHMCS存在未明安全漏洞，目前没有详细漏洞细节提供。 0 WHMCS 5.x WHMCS 5.2.17或5.3.6已经修复该漏洞，建议用户下载更新： http://www.whmcs.com...

MySQLDumper 1.24.4 Multiple Vulnerabilities

Exploit for php platform in category web applications ================================================================================================ Vulnerable Software: MySQLDumper Version 1.24.4 Downloaded from: http://sourceforge.net/projects/mysqldumper/files/ MD5 SUM:...

Toenda CMS 1.6.2 Osaka Stable Local File Inclusion

============TOENDA CMS 1.6.2 OSAKA "STABLE" MULTIPLE VULNERABILITIES============ Vulnerable Software: toendaCMS1.6.2OsakaStable Developed by: http://www.toendacms.org/index.php/en/open/download.html toenda.com http://www.toendacms.org/index.php/en/open/download.html Downloaded from:...

Phorum 'real_name' Parameter Cross-Site Scripting Vulnerability

This host is running Phorum and is prone to cross-site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbphorumxssvuln.nasl 7029 2017-08-31 11:51:40Z teissa $ Phorum 'realname' Parameter Cross-Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright c 2011 Greenbone Networks...

Phorum < 5.2.17 XSS Vulnerability

Phorum is prone to a cross-site scripting XSS vulnerability. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

php: hang on numeric value 2.2250738585072011e-308 with x87 fpu

strtod.c, as used in the zendstrtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service infinite loop via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU...

php -- multiple vulnerabilities

PHP developers reports: Security Enhancements and Fixes in PHP 5.3.5: Fixed bug 53632 PHP hangs on numeric value 2.2250738585072011e-308. CVE-2010-4645 Security Enhancements and Fixes in PHP 5.2.17: Fixed bug 53632 PHP hangs on numeric value 2.2250738585072011e-308. CVE-2010-4645...