Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2006-1547

Malware in sbrugna...

7.5CVSS6.4AI score0.01836EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2006-1548

Malware in sbrugna...

4.3CVSS6.4AI score0.00527EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2006-1549

Malware in sbrugna...

9CVSS6.4AI score0.03351EPSS
Exploits0References7
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.10 views

VNews 1.2 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/17316/info VNews is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit coul...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2006/04/12 12:0 a.m.41 views

[eVuln] VNews Multiple Vulnerabilities

New eVuln Advisory: VNews Multiple Vulnerabilities http://evuln.com/vulns/112/summary.html --------------------Summary---------------- eVuln ID: EV0112 CVE: CVE-2006-1543 CVE-2006-1544 CVE-2006-1545 Software: VNews Sowtware's Web Site: http://www.vscripts.pl/?id=vnews Versions: 1.2 Critical Level...

9CVSS1.2AI score0.03351EPSS
Exploits0
Prion
Prionadded 2006/03/30 11:2 a.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in news.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorkomentarza and 2 tresckomentarza parameters...

4.3CVSS6.1AI score0.00527EPSS
Exploits0References7Affected Software1
Prion
Prionadded 2006/03/30 11:2 a.m.10 views

Sql injection

Multiple SQL injection vulnerabilities in vscripts aka Kuba Kunkiewicz VNews 1.2 allow remote attackers to execute arbitrary SQL commands via the 1 loginvar parameter in a admin/admin.php, and the 2 news and 3 nom parameters in b news.php...

7.5CVSS9.2AI score0.01836EPSS
Exploits0References8Affected Software1
NVD
NVDadded 2006/03/30 11:2 a.m.10 views

CVE-2006-1544

Multiple cross-site scripting XSS vulnerabilities in news.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorkomentarza and 2 tresckomentarza parameters...

4.3CVSS5.8AI score0.00527EPSS
Exploits0References7
NVD
NVDadded 2006/03/30 11:2 a.m.8 views

CVE-2006-1543

Multiple SQL injection vulnerabilities in vscripts aka Kuba Kunkiewicz VNews 1.2 allow remote attackers to execute arbitrary SQL commands via the 1 loginvar parameter in a admin/admin.php, and the 2 news and 3 nom parameters in b news.php...

7.5CVSS8.5AI score0.01836EPSS
Exploits0References8
Prion
Prionadded 2006/03/30 11:2 a.m.14 views

Code injection

Direct static code injection vulnerability in admin/config.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allows remote authenticated administrators to execute code by inserting the code into variables that are stored in admin/config.php...

9CVSS7.3AI score0.03351EPSS
Exploits0References6Affected Software1
NVD
NVDadded 2006/03/30 11:2 a.m.16 views

CVE-2006-1545

Direct static code injection vulnerability in admin/config.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allows remote authenticated administrators to execute code by inserting the code into variables that are stored in admin/config.php...

9CVSS6.8AI score0.03351EPSS
Exploits0References6
Cvelist
Cvelistadded 2006/03/30 11:0 a.m.14 views

CVE-2006-1543

Multiple SQL injection vulnerabilities in vscripts aka Kuba Kunkiewicz VNews 1.2 allow remote attackers to execute arbitrary SQL commands via the 1 loginvar parameter in a admin/admin.php, and the 2 news and 3 nom parameters in b news.php...

8.5AI score0.01836EPSS
Exploits0References8
Cvelist
Cvelistadded 2006/03/30 11:0 a.m.14 views

CVE-2006-1544

Multiple cross-site scripting XSS vulnerabilities in news.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 autorkomentarza and 2 tresckomentarza parameters...

5.8AI score0.00527EPSS
Exploits0References7
CVE
CVEadded 2006/03/30 11:0 a.m.40 views

CVE-2006-1543

VNews 1.2 (vscripts) is affected by multiple SQL injection vulnerabilities. The vulnerable inputs are loginvar in admin/admin.php and the news/nom parameters in news.php, where unsanitized user input is used in SQL queries. This can allow remote attackers to execute arbitrary SQL commands. A PoC/...

7.5CVSS8.5AI score0.01836EPSS
Exploits0References8Affected Software1
CVE
CVEadded 2006/03/30 11:0 a.m.41 views

CVE-2006-1544

CVE-2006-1544 affects VNews 1.2 (vscripts) with multiple XSS flaws in news.php, exploitable via parameters autorkomentarza and tresckomentarza. The vulnerability allows remote attackers to inject arbitrary script/HTML. Exploitation: PoC/Exploit available per eVuln documentation. Affected software...

4.3CVSS5.8AI score0.00527EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2006/03/30 11:0 a.m.15 views

CVE-2006-1545

Direct static code injection vulnerability in admin/config.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allows remote authenticated administrators to execute code by inserting the code into variables that are stored in admin/config.php...

6.8AI score0.03351EPSS
Exploits0References6
CVE
CVEadded 2006/03/30 11:0 a.m.38 views

CVE-2006-1545

The CVE-2006-1545 entry concerns VNews 1.2 (vscripts) where a Direct static code injection vulnerability in admin/config.php lets remote authenticated administrators execute code by inserting PHP into variables stored in admin/config.php. The issue arises in a vulnerable component/file (admin/con...

9CVSS6.8AI score0.03351EPSS
Exploits0References6Affected Software1
exploitpack
exploitpackadded 2006/03/30 12:0 a.m.16 views

VNews 1.2 - Multiple SQL Injections

VNews 1.2 - Multiple SQL Injections source: https://www.securityfocus.com/bid/17316/info VNews is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit...

0.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/03/30 12:0 a.m.20 views

VNews 1.2 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/17316/info VNews is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2006/03/30 12:0 a.m.28 views

[SA19435] VNews Multiple Vulnerabilities

TITLE: VNews Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19435 VERIFY ADVISORY: http://secunia.com/advisories/19435/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data, System access WHERE: From remote SOFTWARE: VNews 1.x http://secunia.com/product/9043/...

1.1AI score
Exploits0
Rows per page
Query Builder