Lucene search
+L

4 matches found

nvd
nvd
added 2013/01/24 1:55 a.m.19 views

CVE-2012-6520

Multiple SQL injection vulnerabilities in the advanced search in Wikidforum 2.10 allow remote attackers to execute arbitrary SQL commands via the 1 selectsort or 2 optsearchselect parameters. NOTE: this issue could not be reproduced by third parties...

7.5CVSS8.4AI score0.01271EPSS
Exploits1References7
prion
prion
added 2013/01/24 1:55 a.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in the advanced search in Wikidforum 2.10 allow remote attackers to execute arbitrary SQL commands via the 1 selectsort or 2 optsearchselect parameters. NOTE: this issue could not be reproduced by third parties...

7.5CVSS9.2AI score0.01271EPSS
Exploits1References7Affected Software1
cve
cve
added 2013/01/24 1:0 a.m.47 views

CVE-2012-2099

CVE-2012-2099 concerns Wikidforum 2.10 with multiple cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary web script or HTML via the advanced search interface: (1) search field, (2) Author, or (3) select_sort parameters. The NVD entry lists a Medium se...

4.3CVSS5.9AI score0.02533EPSS
Exploits1References9Affected Software1
packetstorm
packetstorm
added 2012/03/12 12:0 a.m.22 views

Wikidforum 2.10 Cross Site Scripting / SQL Injection

Advisory: Wikidforum 2.10 Multiple security vulnerabilities Advisory ID: SSCHADV2012-005 Author: Stefan Schurtz Affected Software: Successfully tested on Wikidforum 2.10 Vendor URL: http://www.wikidforum.com/ Vendor Status: informed ========================== Vulnerability Description...

0.2AI score
Exploits0
Rows per page
Query Builder