Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-5373

Malware in sbrugna...

7.5CVSS6.1AI score0.01039EPSS
Exploits1References4
NVD
NVD
added 2006/10/18 7:7 p.m.21 views

CVE-2006-5388

SQL injection vulnerability in index.php in WebSPELL 4.01.01 and earlier allows remote attackers to execute arbitrary SQL commands via the getsquad parameter, a different vector than CVE-2006-4783...

7.5CVSS8.1AI score0.01039EPSS
Exploits1References3
CVE
CVE
added 2006/10/18 7:0 p.m.55 views

CVE-2006-5388

Technical details about CVE-2006-5388 are not provided in the connected documents. The initial description mentions a SQL injection in WebSPELL 4.01.01 and earlier via the getsquad parameter, but no further specifics are supplied here. Monitor for updates.

7.5CVSS8.1AI score0.01039EPSS
Exploits1References3Affected Software1
Exploit DB
Exploit DB
added 2006/10/15 12:0 a.m.123 views

webSPELL 4.01.01 - 'getsquad' SQL Injection

WebSPELL = 4.01.01 getsquad Remote SQL Injection Exploit by: Kiba EXPLOIT: http://PAGE/PATH/index.php?site=squads&getsquad=Where+1=0+Union+Select+1,1,username,1,password,1+from+PREFIXuser/ REPLACE: if the website is http://yourwebsite.de/webspell/index.php PAGE with "yourwebsite.de" PATH with...

7.4AI score
Exploits0
NVD
NVD
added 2006/09/14 10:7 a.m.18 views

CVE-2006-4783

SQL injection vulnerability in squads.php in WebSPELL 4.01.01 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary SQL commands via the squadID parameter...

5.1CVSS8.1AI score0.01129EPSS
Exploits1References5
CVE
CVE
added 2006/09/14 10:0 a.m.49 views

CVE-2006-4783

WebSPELL 4.01.01 and earlier are affected by an SQL injection in squads.php when register_globals is enabled. The vulnerability allows remote attackers to inject arbitrary SQL via the squadID parameter, enabling unauthorized database commands. The available sources confirm the affected file and p...

5.1CVSS8.2AI score0.01129EPSS
Exploits1References5Affected Software1
Exploit DB
Exploit DB
added 2006/09/12 12:0 a.m.38 views

webSPELL 4.01.01 - Database Backup Download

WebSPELL = 4.01.01 Accessible Database Backup Download Exploit Discovered by: Trex Visit: www.SecuritySector.org / www.UnderGround.ag Exploit: http://SITE/PATH/admin/database.php?action=write&userID=1 Solution: http://cms.webspell.org/index.php?site=files&file=15 milw0rm.com 2006-09-12...

7.4AI score
Exploits0
Rows per page
Query Builder