Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
1scriptsZ1exchange

3 matches found

CVE
CVEadded 2009/02/25 11:0 p.m.61 views

CVE-2008-6284

CVE-2008-6284 describes a SQL injection vulnerability in the J1Exchange/ Z1Exchange 1.0 product, specifically in the file edit.php where the site parameter can be exploited to execute arbitrary SQL commands. The issue enables remote attackers to interact with the database and potentially compromi...

7.5CVSS8.6AI score0.00967EPSS
CVE
CVEadded 2009/03/02 7:0 p.m.61 views

CVE-2008-6392

CVE-2008-6392 describes an SQL injection vulnerability in the Z1Exchange component, specifically in showads.php, allowing remote attackers to execute arbitrary SQL commands via the id parameter . The vulnerability is characterized by the ability to manipulate the database through user-supplied in...

7.5CVSS8.7AI score0.00967EPSS
CVE
CVEadded 2009/03/02 7:0 p.m.55 views

CVE-2008-6386

CVE-2008-6386 describes a Cross-site scripting (XSS) vulnerability in Z1Exchange 1.0, specifically in showads.php, where the id parameter can be leveraged to inject arbitrary web script or HTML. The NVD entry assigns a medium severity (CVSS v2 base score 4.3) with network attack vector, no confid...

4.3CVSS5.9AI score0.01458EPSS