CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-1270

Malware in sbrugna...

4.3CVSS6.4AI score0.00521EPSS

Exploits1References6

NVD•added 2006/03/19 2:2 a.m.•7 views

CVE-2006-1266

Cross-site scripting XSS vulnerability in ServiceRequests.asp in VPMi Enterprise 3.3 allows remote attackers to inject arbitrary web script or HTML via the RequestNameDisplay parameter...

4.3CVSS5.7AI score0.00521EPSS

Exploits1References5

Prion•added 2006/03/19 2:2 a.m.•6 views

Cross site scripting

Cross-site scripting XSS vulnerability in ServiceRequests.asp in VPMi Enterprise 3.3 allows remote attackers to inject arbitrary web script or HTML via the RequestNameDisplay parameter...

4.3CVSS6.1AI score0.00521EPSS

Exploits1References5Affected Software1

CVE•added 2006/03/19 2:0 a.m.•44 views

CVE-2006-1266

CVE-2006-1266 is a cross-site scripting (XSS) flaw in VPMi Enterprise 3.3, exploitable via the Request_Name_Display parameter in Service_Requests.asp. The issue allows remote attackers to inject arbitrary web script or HTML. The vulnerability is documented with an NVD CVSSv2 base score of 4.3 (ME...

4.3CVSS5.7AI score0.00521EPSS

Exploits1References5Affected Software1

Cvelist•added 2006/03/19 2:0 a.m.•12 views

CVE-2006-1266

Cross-site scripting XSS vulnerability in ServiceRequests.asp in VPMi Enterprise 3.3 allows remote attackers to inject arbitrary web script or HTML via the RequestNameDisplay parameter...

5.7AI score0.00521EPSS

Exploits1References5

Prion•added 2006/02/25 11:2 a.m.•11 views

Sql injection

DISPUTED SQL injection vulnerability in VCS Virtual Program Management Intranet VPMi Enterprise 3.3 allows remote attackers to execute arbitrary SQL commands via the UpdateID0 parameter to ServiceRequests.asp. NOTE: the provenance of this information is unknown; the details are obtained solely fr...

7.5CVSS8.4AI score0.01112EPSS

Exploits0References7Affected Software1

NVD•added 2006/02/25 11:2 a.m.•6 views

CVE-2006-0897

SQL injection vulnerability in VCS Virtual Program Management Intranet VPMi Enterprise 3.3 allows remote attackers to execute arbitrary SQL commands via the UpdateID0 parameter to ServiceRequests.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

7.5CVSS8AI score0.01112EPSS

Exploits0References7

Cvelist•added 2006/02/25 11:0 a.m.•9 views

CVE-2006-0897

8AI score0.01112EPSS

Exploits0References7

CVE•added 2006/02/25 11:0 a.m.•43 views

CVE-2006-0897

SQL injection vulnerability in VCS Virtual Program Management Intranet (VPMi) Enterprise 3.3 via the UpdateID0 parameter to Service_Requests.asp. The vendor disputes the issue, citing a protected state-management system, while third-party sources suggest the original researcher may have triggered...

7.5CVSS8AI score0.01112EPSS

Exploits0References7Affected Software1

securityvulns•added 2006/02/25 12:0 a.m.•30 views

[SA18842] VPMi Enterprise "UpdateID0" SQL Injection Vulnerability

TITLE: VPMi Enterprise "UpdateID0" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA18842 VERIFY ADVISORY: http://secunia.com/advisories/18842/ CRITICAL: Not critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: VPMi Virtual Program Management Intranet Enterprise 3.x...

1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by