Lucene search
K

93 matches found

NVD
NVD
added 2006/07/25 1:22 p.m.11 views

CVE-2006-3821

Multiple cross-site scripting XSS vulnerabilities in ATutor 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the 1 lang parameter in a indexlist.php and 2 year, 3 month, and 4 day parameter in b registration.php...

4.3CVSS5.8AI score0.01325EPSS
Exploits1References6
OSV
OSV
added 2006/07/21 2:3 p.m.1 views

DEBIAN-CVE-2006-3682

awstats.pl in AWStats 6.5 build 1.857 and earlier allows remote attackers to obtain the installation path via the 1 year, 2 pluginmode or 3 month parameters...

5CVSS7AI score0.09545EPSS
Exploits1References1
Cvelist
Cvelist
added 2006/06/06 8:3 p.m.21 views

CVE-2005-2461

Multiple SQL injection vulnerabilities in the calendar feature in Kayako liveResponse 2.x allow remote attackers to execute arbitrary SQL commands via the 1 year or 2 date parameter...

8.5AI score0.02287EPSS
Exploits0References5
Prion
Prion
added 2006/03/21 2:6 a.m.15 views

Sql injection

SQL injection vulnerability in events.php in Maian Events 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters...

7.5CVSS9AI score0.01381EPSS
Exploits1References7Affected Software1
Prion
Prion
added 2006/03/03 11:2 a.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Jay Eckles CGI Calendar 2.7 allow remote attackers to inject arbitrary web script or HTML via the year parameter in 1 index.cgi and 2 viewday.cgi...

4.3CVSS6.1AI score0.0118EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2006/02/07 6:6 p.m.16 views

CVE-2006-0573

Multiple cross-site scripting XSS vulnerabilies in cPanel 10 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 email parameter to a editquota.html or b dodelpop.html; 2 showtree parameter to c diskusage.html; or the 3 mon, 4 year, 5 target, or 6 domain parameter ...

4.3CVSS5.7AI score0.02526EPSS
Exploits1References9
Prion
Prion
added 2006/01/21 12:3 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 month or 2 year parameter to index.php...

4.3CVSS5.9AI score0.01164EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2006/01/21 12:0 a.m.17 views

CVE-2006-0333

Cross-site scripting XSS vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 month or 2 year parameter to index.php...

5.6AI score0.01164EPSS
Exploits0References3
Prion
Prion
added 2006/01/18 12:7 a.m.9 views

Sql injection

SQL injection vulnerability in index.php in microBlog 2.0 RC-10 allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters...

7.5CVSS9.1AI score0.0186EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2005/05/31 4:0 a.m.18 views

CVE-2005-1866

Cross-site scripting XSS vulnerability in calendar.php in Calendarix Advanced 1.5 allows remote attackers to inject arbitrary web script or HTML via the year parameter...

4.3CVSS5.7AI score0.01242EPSS
Exploits1References3
NVD
NVD
added 2005/05/17 4:0 a.m.21 views

CVE-2005-1634

Multiple cross-site scripting XSS vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 anzahlbeitraege parameter to jgsportal.php, 2 year parameter to jgsportalstatistik.php, 3 year parameter to jgsportalbeitraggraf.php, 4...

4.3CVSS5.7AI score0.01375EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/05/11 4:0 a.m.20 views

CVE-2005-1500

Multiple SQL injection vulnerabilities in myBloggie 2.1.1 allow remote attackers to execute arbitrary SQL commands via 1 the keyword parameter in search.php; or 2 the dateno parameter in viewdate mode, 3 the catid parameter in viewcat mode, the 4 monthno or 5 year parameter in viewmonth mode, or ...

8.5AI score0.02545EPSS
Exploits1References7
NVD
NVD
added 2003/12/31 5:0 a.m.21 views

CVE-2003-1536

Multiple cross-site scripting XSS vulnerabilities in Codeworx Technologies DCP-Portal 5.3.1 allow remote attackers to inject arbitrary web script or HTML via 1 the q parameter to search.php and 2 the year parameter to calendar.php...

4.3CVSS5.8AI score0.01774EPSS
Exploits1References7
Rows per page
Query Builder