Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-6730

Malware in sbrugna...

7.5CVSS6.4AI score0.01151EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6729

Malware in sbrugna...

4.3CVSS6.4AI score0.01768EPSS
Exploits1References7
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Xt-News 0.1 show_news.php id_news Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Xt-News 0.1 add_comment.php id_news Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Xt-News 0.1 show_news.php id_news Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/27 12:28 a.m.12 views

CVE-2006-6746

Multiple cross-site scripting XSS vulnerabilities in Xt-News 0.1 allow remote attackers to inject arbitrary web script or HTML via the idnews parameter to 1 addcomment.php or 2 shownews.php...

4.3CVSS5.8AI score0.01768EPSS
Exploits1References6
NVD
NVD
added 2006/12/27 12:28 a.m.13 views

CVE-2006-6747

SQL injection vulnerability in shownews.php in Xt-News 0.1 allows remote attackers to execute arbitrary SQL commands via the idnews parameter...

7.5CVSS8.4AI score0.01151EPSS
Exploits1References6
Packet Storm
Packet Storm
added 2006/12/27 12:0 a.m.24 views

xtnew01-sqlxss.txt

Xt-News 0.1 ----------- Vendor site: http://dreaxteam.free.fr/forums/ Product: Xt-News 0.1 Vulnerability: SQL Injection Vulnerability & XSS Credits: MrKaLiMaN Reported to Vendor: 10/12/06 Public disclosure: 22/12/06 Description: ------------ SQL Injection Vulnerability:...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2006/12/27 12:0 a.m.19 views

CVE-2006-6747

SQL injection vulnerability in shownews.php in Xt-News 0.1 allows remote attackers to execute arbitrary SQL commands via the idnews parameter...

8.4AI score0.01151EPSS
Exploits1References6
CVE
CVE
added 2006/12/27 12:0 a.m.41 views

CVE-2006-6747

The CVE-2006-6747 entry describes a SQL injection in Xt-News 0.1’s show_news.php, exploitable via the id_news parameter. A remote attacker can cause arbitrary SQL execution (no authentication required; network access; low attack complexity) with potential partial impact to confidentiality, integr...

7.5CVSS8.8AI score0.01151EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2006/12/27 12:0 a.m.20 views

CVE-2006-6746

Multiple cross-site scripting XSS vulnerabilities in Xt-News 0.1 allow remote attackers to inject arbitrary web script or HTML via the idnews parameter to 1 addcomment.php or 2 shownews.php...

5.8AI score0.01768EPSS
Exploits1References6
CVE
CVE
added 2006/12/27 12:0 a.m.37 views

CVE-2006-6746

The CVE concerns Xt-News 0.1, where multiple cross-site scripting (XSS) vulnerabilities affect user-supplied input via the id_news parameter. Specifically, the flaws can be triggered through add_comment.php or show_news.php, enabling remote attackers to inject arbitrary web script or HTML. Impact...

4.3CVSS6AI score0.01768EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2006/12/23 12:0 a.m.64 views

Xt-News 0.1 : SQL Injection Vulnerability & XSS

Xt-News 0.1 ----------- Vendor site: http://dreaxteam.free.fr/forums/ Product: Xt-News 0.1 Vulnerability: SQL Injection Vulnerability & XSS Credits: MrKaLiMaN Reported to Vendor: 10/12/06 Public disclosure: 22/12/06 Description: ------------ SQL Injection Vulnerability:...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2006/12/22 12:0 a.m.18 views

Xt-News 0.1 - show_news.php?id_news Cross-Site Scripting

Xt-News 0.1 - shownews.php?idnews Cross-Site Scripting source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2006/12/22 12:0 a.m.18 views

Xt-News 0.1 - show_news.php?id_news SQL Injection

Xt-News 0.1 - shownews.php?idnews SQL Injection source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2006/12/22 12:0 a.m.18 views

Xt-News 0.1 - add_comment.php?id_news Cross-Site Scripting

Xt-News 0.1 - addcomment.php?idnews Cross-Site Scripting source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2006/12/22 12:0 a.m.51 views

Xt-News 0.1 - 'show_news.php?id_news' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issues to steal cookie-based...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/12/22 12:0 a.m.24 views

Xt-News 0.1 - 'add_comment.php?id_news' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issues to steal cookie-based...

7.4AI score
Exploits0
Rows per page
Query Builder