Lucene search

Koobi Cms Security Vulnerabilities - February

cve

CVE-2005-0889

Cross-site scripting (XSS) vulnerability in index.php for Dream4 Koobi CMS 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the area parameter.

6AI Score

0.002EPSS

2005-03-26 05:00 AM

cve

CVE-2005-0890

SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter.

8.8AI Score

0.002EPSS

2005-05-02 04:00 AM

cve

CVE-2005-1373

Multiple SQL injection vulnerabilities in index.php in Dream4 Koobi CMS 4.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) q or (2) p parameters.

8.5AI Score

0.008EPSS

2005-05-03 04:00 AM

cve

CVE-2008-4778

SQL injection vulnerability in the gallery module in Koobi CMS 4.3.0 allows remote attackers to execute arbitrary SQL commands via the galid parameter in a showimages action.

8.3AI Score

0.001EPSS

2008-10-29 02:22 PM