Lucene search

K

Esyndicat Security Vulnerabilities

cve
cve

CVE-2011-5177

Multiple cross-site scripting (XSS) vulnerabilities in admin/controller.php in eSyndiCat Pro 2.3.05 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to the admins (2) blocks, (3) articles, or (4) suggest-category; or (5) sort parameter to the search...

5.9AI Score

0.002EPSS

2012-09-20 10:55 AM
18
cve
cve

CVE-2008-3299

eSyndiCat 1.6 allows remote attackers to bypass authentication and gain administrative access by setting the admin_lng cookie value to 1. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

6.9AI Score

0.011EPSS

2008-07-25 01:41 PM
15
cve
cve

CVE-2007-6543

SQL injection vulnerability in suggest-link.php in eSyndiCat Link Exchange Script allows remote attackers to execute arbitrary SQL commands via the id...

8.4AI Score

0.032EPSS

2007-12-28 12:46 AM
40
cve
cve

CVE-2007-3811

Multiple SQL injection vulnerabilities in eSyndiCat allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to news.php or (2) the name parameter to...

8.5AI Score

0.006EPSS

2007-07-17 12:30 AM
26
cve
cve

CVE-2007-2785

manage-admins.php in eSyndiCat Pro 1.x allows remote attackers to create additional administrative accounts, and have other unspecified impact, via modified username, new_pass, new_pass2, status, super, and certain other parameters in an add...

6.8AI Score

0.011EPSS

2007-05-21 11:30 PM
21
cve
cve

CVE-2006-4923

Cross-site scripting (XSS) vulnerability in search.php in eSyndiCat Portal System allows remote attackers to inject arbitrary web script or HTML via the what...

5.9AI Score

0.007EPSS

2006-09-21 01:07 AM
17
cve
cve

CVE-2006-2578

admin/cron.php in eSyndicat Directory 1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include arbitrary files and possibly execute arbitrary PHP code via a null-terminated value in the path_to_config...

7.5AI Score

0.007EPSS

2006-05-24 11:02 PM
28