CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Prion•added 2009/10/08 5:30 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in demopage.php in Scriptsez Ultimate Poll allows remote attackers to inject arbitrary web script or HTML via the clr parameter in a vote action...

4.3CVSS6.1AI score0.03028EPSS

Exploits1References4

NVD•added 2009/10/08 5:30 p.m.•12 views

CVE-2009-3601

Cross-site scripting XSS vulnerability in demopage.php in Scriptsez Ultimate Poll allows remote attackers to inject arbitrary web script or HTML via the clr parameter in a vote action...

4.3CVSS5.7AI score0.03028EPSS

Exploits1References4

Prion•added 2009/09/10 6:30 p.m.•12 views

Sql injection

SQL injection vulnerability in index.php in Multi Website 1.5 allows remote attackers to execute arbitrary SQL commands via the Browse parameter in a vote action...

7.5CVSS9.1AI score0.00999EPSS

Exploits0References3Affected Software1

Cvelist•added 2009/09/08 10:0 a.m.•16 views

CVE-2008-7171

Multiple cross-site scripting XSS vulnerabilities in Lightweight news portal LNP 1.0b allow remote attackers to inject arbitrary web script or HTML via the 1 photo parameter to showphoto.php, 2 potd parameter to showpotd.php, or 3 the Current question field in a vote action to admin.php...

5.8AI score0.01445EPSS

Exploits1References4

Prion•added 2009/08/27 8:30 p.m.•13 views

Sql injection

Multiple SQL injection vulnerabilities in Qsoft K-Rate Premium allow remote attackers to execute arbitrary SQL commands via 1 the $id variable in admin/includes/delecpac.php, 2 $ordorderid variable in payments/paymentreceived.php, 3 $id variable in includes/functions.php, and 4 unspecified...

7.5CVSS9.3AI score0.02082EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by