CVE-2020-27298

Philips Interventional Workspot Release 1.3.2, 1.4.0, 1.4.1, 1.4.3, 1.4.5, Coronary Tools/Dynamic Coronary Roadmap/Stentboost Live Release 1.0, ViewForum Release 6.3V1L10. The software constructs all or part of an OS command using externally influenced input from an upstream component but does no...

CVE-2010-4771

SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2010-4772

Cross-site scripting XSS vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php...

CVE-2020-27298

Philips Interventional Workspot Release 1.3.2, 1.4.0, 1.4.1, 1.4.3, 1.4.5, Coronary Tools/Dynamic Coronary Roadmap/Stentboost Live Release 1.0, ViewForum Release 6.3V1L10. The software constructs all or part of an OS command using externally influenced input from an upstream component but does no...

CVE-2020-27298

Philips Interventional Workspot Release 1.3.2, 1.4.0, 1.4.1, 1.4.3, 1.4.5, Coronary Tools/Dynamic Coronary Roadmap/Stentboost Live Release 1.0, ViewForum Release 6.3V1L10. The software constructs all or part of an OS command using externally influenced input from an upstream component but does no...

Philips Multiple Products OS Command Injection Vulnerability

An operating system command injection vulnerability exists in various Philips products, which can be exploited by an attacker to modify the system commands expected to be executed by the system. The vulnerability exists in the following devices or models: Interventional Workspot Release 1.3.2,...

Sql injection

SQL injection vulnerability in viewforum.php in PNphpBB2 1.2i and earlier for Postnuke allows remote attackers to execute arbitrary SQL commands via the order parameter...

CVE-2005-4642

Multiple cross-site scripting XSS vulnerabilities in HydroBB 1.0.0 Beta 2 allow remote attackers to inject arbitrary web script or HTML via the s parameter to 1 search.php, 2 members.php, 3 stats.php, 4 viewforum.php, 5 register.php, 6 usercp.php, 7 groups.php, 8 pms.php, and 9 calendar.php...

CVE-2005-3513

index.php in VUBB alpha rc1 allows remote attackers to obtain the installation path of the application via a viewforum action with the f parameter set to a single quote '...

CVE-2005-3513

index.php in VUBB alpha rc1 allows remote attackers to obtain the installation path of the application via a viewforum action with the f parameter set to a single quote '...

CVE-2005-3513

The CVE refers to VUBB alpha rc1 where index.php exposes the installation path via a viewforum action when the f parameter is set to a single quote ('). This is a remote, unauthenticated disclosure vulnerability in the VUBB application. Affected component: VUBB alpha rc1, specifically the viewfor...

PT-2005-4309 · Vubb · Vubb

Name of the Vulnerable Software and Affected Versions: VUBB alpha rc1 Description: The issue allows remote attackers to obtain the installation path of the application. This can be achieved by using the viewforum action with the f parameter set to a single quote '. Recommendations: For VUBB alpha...

phpBBXSS206d.txt

Vendor : phpBB Group URL : http://www.phpbb.com Version : phpBB 2.0.6d && Earlier Risk : Cross Site Scripting Description: phpBB is a high powered, fully scalable, and highly customisable open-source bulletin board package. phpBB has a user-friendly interface, simple and straight forward...