CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

CNVD•added 2020/04/15 12:0 a.m.•2 views

WebCMS suffers from SQL injection vulnerability

WebCMS is a centralized cloud backup solution designed specifically for campuses. WebCMS suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information about the database...

7.6AI score

Exploits0

Packet Storm•added 2009/01/16 12:0 a.m.•12 views

W3bCMS SQL Injection

--------------------------------------------------------- Portal Name: W3bCMS DL : http://www.w3bcms.de Author : PouyaServer , [email protected] Vulnerability : SQL --------------------------------------------------------- SQL:...

0.2AI score

Exploits0

NVD•added 2008/09/23 3:25 p.m.•10 views

CVE-2008-4186

SQL injection vulnerability in index.php in webCMS Portal Edition allows remote attackers to execute arbitrary SQL commands via the iddoc parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS8.1AI score0.00224EPSS

Exploits0References2

NVD•added 2008/09/23 3:25 p.m.•9 views

CVE-2008-4185

SQL injection vulnerability in index.php in webCMS Portal Edition allows remote attackers to execute arbitrary SQL commands via the id parameter in a documentos action, a different vector than CVE-2008-3213...

7.5CVSS8.2AI score0.00927EPSS

Exploits1References6

Prion•added 2008/09/23 3:25 p.m.•15 views

Sql injection

7.5CVSS8.7AI score0.00927EPSS

Exploits2References6

Prion•added 2008/09/23 3:25 p.m.•7 views

Sql injection

7.5CVSS8.8AI score0.00224EPSS

Exploits0References2

Prion•added 2008/09/23 3:25 p.m.•8 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in webCMS Portal Edition allows remote attackers to inject arbitrary web script or HTML via the patron parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.00296EPSS

Exploits0References3

Cvelist•added 2008/09/23 3:0 p.m.•12 views

CVE-2008-4186

8.1AI score0.00224EPSS

Exploits0References2

Cvelist•added 2008/09/23 3:0 p.m.•13 views

CVE-2008-4184

5.6AI score0.00296EPSS

Exploits0References3

CVE•added 2008/09/23 3:0 p.m.•34 views

CVE-2008-4184

The CVE affects webCMS Portal Edition, via an XSS in index.php that allows remote injection of arbitrary script/HTML through the patron parameter. Root cause is improper handling of input in index.php enabling reflected/stored XSS as described in CVE-2008-4184 and corroborated by NVD references. ...

4.3CVSS5.6AI score0.00296EPSS

Exploits0References3Affected Software1

Cvelist•added 2008/09/23 3:0 p.m.•14 views

CVE-2008-4185

8.2AI score0.00927EPSS

Exploits1References6

CVE•added 2008/09/23 3:0 p.m.•37 views

CVE-2008-4186

The CVE-2008-4186 entry refers to a vulnerability in the webCMS Portal Edition where the issue is caused by an SQL injection in the file index.php via the parameter id_doc . The vulnerability allows remote attackers to execute arbitrary SQL commands. The root cause and affected component are docu...

7.5CVSS8.1AI score0.00224EPSS

Exploits0References2Affected Software1

CVE•added 2008/09/23 3:0 p.m.•36 views

CVE-2008-4185

CVE-2008-4185 and related entry describe an SQL injection in WebCMS Portal Edition. The flaw affects the application’s handling of the id parameter in documents actions, enabling remote attackers to execute arbitrary SQL commands. The cited paths vary by entry (index.php in the WebCMS Portal Edit...

7.5CVSS8.4AI score0.00927EPSS

Exploits1References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by