Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-1377

Malware in sbrugna...

6.8CVSS6.4AI score0.01652EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-1039

Malware in sbrugna...

6.5CVSS6.4AI score0.00877EPSS
Exploits1References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

Yap Blog 1.1 - 'index.php' Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28120/info Yap Blog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlyi...

7.1AI score
Exploits0
Prion
Prion
added 2009/03/20 6:30 p.m.12 views

Sql injection

Multiple SQL injection vulnerabilities in YAP Blog 1.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 imageid parameter to comments.php, and remote authenticated administrators to execute arbitrary SQL commands via the 2 user parameter in a modif action to admin/index.php...

6.5CVSS8.8AI score0.00877EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2009/03/20 6:30 p.m.19 views

CVE-2009-1038

Multiple SQL injection vulnerabilities in YAP Blog 1.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 imageid parameter to comments.php, and remote authenticated administrators to execute arbitrary SQL commands via the 2 user parameter in a modif action to admin/index.php...

6.5CVSS8.1AI score0.00877EPSS
Exploits1References4
CVE
CVE
added 2009/03/20 6:0 p.m.46 views

CVE-2009-1038

CVE-2009-1038 concerns YAP Blog 1.1.1, which is reported to have multiple SQL injection vulnerabilities. The affected components are the (1) image_id parameter in comments.php and the (2) user parameter in a modif action to admin/index.php, potentially allowing an attacker to alter or read data v...

6.5CVSS8.3AI score0.00877EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/03/20 6:0 p.m.23 views

CVE-2009-1038

Multiple SQL injection vulnerabilities in YAP Blog 1.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 imageid parameter to comments.php, and remote authenticated administrators to execute arbitrary SQL commands via the 2 user parameter in a modif action to admin/index.php...

8.1AI score0.00877EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/03/16 12:0 a.m.116 views

Yap Blog 'index.php' Remote File Include Vulnerability

Yap Blog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible. Versions prior to Yap Blog 1.1.1 are...

6.8CVSS0.4AI score0.01652EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/03/16 12:0 a.m.35 views

Yap Blog < 1.1.1 RFI Vulnerability - Active Check

Yap Blog is prone to a remote file inclusion RFI vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.8CVSS6.7AI score0.01652EPSS
Exploits1References1
Prion
Prion
added 2008/03/18 5:44 p.m.13 views

Remote file inclusion

PHP remote file inclusion vulnerability in index.php in wildmary Yap Blog 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.8CVSS7.8AI score0.01652EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2008/03/18 5:44 p.m.17 views

CVE-2008-1370

PHP remote file inclusion vulnerability in index.php in wildmary Yap Blog 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.8CVSS7.3AI score0.01652EPSS
Exploits1References2
CVE
CVE
added 2008/03/18 5:0 p.m.53 views

CVE-2008-1370

The provided connected sources confirm CVE-2008-1370 is a remote file inclusion vulnerability in Yap Blog’s index.php. Affected software: Yap Blog 1.1 (and up to 1.1.1 per OpenVAS entry). Root cause: insufficient sanitization/validation of user-supplied input, allowing a crafted URL in the page p...

6.8CVSS7.3AI score0.01652EPSS
Exploits1References2Affected Software1
Packet Storm
Packet Storm
added 2008/03/12 12:0 a.m.36 views

yapblog-rfi.txt

Description: Yap Blog 1.1 Remote File Include RFI Script Name: Yap Blog 1.1 Author : THEMILLER contact : themilleratlinuxmail.org Download URL : http://wildmary.net-sauvage.com/share/yap1.1.tar.gz Bug Type: Remote File Inclusion Bug In: index.php Vulnerable Code: if isset$GET'page' include...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/03/06 12:0 a.m.19 views

Yap Blog 1.1 - index.php Remote File Inclusion

Yap Blog 1.1 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/28120/info Yap Blog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/06 12:0 a.m.22 views

Yap Blog 1.1 - &#039;index.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/28120/info Yap Blog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

7.4AI score
Exploits0
Rows per page
Query Builder