Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-6966

Malware in sbrugna...

7.5CVSS6.4AI score0.02588EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-6965

Malware in sbrugna...

5CVSS6.4AI score0.06635EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/09/06 12:23 a.m.12 views

CVE-2025-57263

An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...

7.2CVSS7.9AI score0.0037EPSS
Exploits1References1
NVD
NVD
added 2025/09/04 2:15 p.m.3 views

CVE-2025-57263

An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...

7.2CVSS0.0037EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/04 12:0 a.m.1 views

CVE-2025-57263

An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...

7.4AI score0.0037EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/09/04 12:0 a.m.5 views

PT-2025-35939

Name of the Vulnerable Software and Affected Versions: VX Guestbook version 1.07 Description: An authenticated SQL injection vulnerability exists in VX Guestbook version 1.07. Attackers with admin access can inject malicious SQL payloads via the word POST parameter in the words.php admin panel...

7.2CVSS7.3AI score0.0037EPSS
Exploits1References6
CVE
CVE
added 2025/09/04 12:0 a.m.23 views

CVE-2025-57263

The CVE-2025-57263 entry concerns VX Guestbook 1.07 with an authenticated SQL injection via the word POST parameter in the words.php admin panel. Attackers with admin privileges can inject malicious SQL payloads, indicating impact to data confidentiality, integrity, and availability as described ...

7.2CVSS7.4AI score0.0037EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/09/04 12:0 a.m.8 views

CVE-2025-57263

An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...

0.0037EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2025/08/04 12:0 a.m.103 views

📄 VX Guestbook 1.07 SQL Injection

VX Guestbook version 1.07 suffers from a remote SQL injection vulnerability. Exploit Title: VX Guestbook SQL Injection Authenticated Date: 2025-08-02 Exploit Author: tmrswrr Category : Webapps Vendor: https://phpversion.com/ Version 1.07 1. Access the Admin Panel: - Click Words Censor...

8.5AI score
Exploits0
Prion
Prion
added 2009/08/19 10:30 a.m.15 views

Authentication flaw

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the 1 adminname and 2 adminpass cookie values to 1...

7.5CVSS7.8AI score0.02588EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2009/08/19 10:30 a.m.10 views

Authentication flaw

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php...

5CVSS7.5AI score0.06635EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2009/08/19 10:30 a.m.14 views

CVE-2008-7006

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php...

5CVSS7AI score0.06635EPSS
Exploits1References5
NVD
NVD
added 2009/08/19 10:30 a.m.16 views

CVE-2008-7007

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the 1 adminname and 2 adminpass cookie values to 1...

7.5CVSS7.2AI score0.02588EPSS
Exploits1References5
CVE
CVE
added 2009/08/19 10:0 a.m.45 views

CVE-2008-7007

CVE-2008-7007 affects Free PHP VX Guestbook 1.06. The vulnerability allows remote attackers to bypass authentication and gain administrative access by setting the admin_name and admin_pass cookies to 1. The root cause is improper cookie handling that accepts these values as valid credentials, ena...

7.5CVSS7.5AI score0.02588EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2009/08/19 10:0 a.m.21 views

CVE-2008-7006

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php...

7AI score0.06635EPSS
Exploits1References5
Cvelist
Cvelist
added 2009/08/19 10:0 a.m.20 views

CVE-2008-7007

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the 1 adminname and 2 adminpass cookie values to 1...

7.2AI score0.02588EPSS
Exploits1References5
CVE
CVE
added 2009/08/19 10:0 a.m.39 views

CVE-2008-7006

The CVE-2008-7006 entry affects Free PHP VX Guestbook 1.06. A vulnerability in admin/backupdb.php allows remote attackers to bypass authentication and download the database backup directly, exposing data without requiring login. The cited sources describe the issue and its impact as authenticatio...

5CVSS7.2AI score0.06635EPSS
Exploits1References5Affected Software1
seebug.org
seebug.org
added 2008/09/15 12:0 a.m.17 views

Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability

No description provided by source. + Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability + Discovered By Stack + Greetz : All my freind --- exploit: javascript:document.cookie = "adminname=1; path=/"; document.cookie = "adminpass=1; path=/";...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/09/14 12:0 a.m.16 views

freephpvx-database.txt

Free PHP VX Guestbook 1.06 Arbitrary Backup Database + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Arbitrary Backup Database Follow the example and the database download will begin : dbnamedbbackup.sql PoC :...

Exploits0
seebug.org
seebug.org
added 2008/09/14 12:0 a.m.19 views

Free PHP VX Guestbook 1.06 Arbitrary Database Backup Vulnerability

No description provided by source. + Free PHP VX Guestbook 1.06 Arbitrary Backup Database + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Arbitrary Backup Database Follow the example and the database download...

7.1AI score
Exploits0
Rows per page
Query Builder