Lucene search

K

Mike Security Vulnerabilities

cve
cve

CVE-2006-0311

SQL injection vulnerability in login.php in aoblogger 2.3 allows remote attackers to execute arbitrary SQL commands via the username...

8.4AI Score

0.019EPSS

2006-01-19 01:03 AM
18
cve
cve

CVE-2006-0310

Cross-site scripting (XSS) vulnerability in aoblogger 2.3 allows remote attackers to inject arbitrary Javascript via a javascript URI in the BBcode url...

5.8AI Score

0.013EPSS

2006-01-19 01:03 AM
21
cve
cve

CVE-2006-0312

create.php in aoblogger 2.3 allows remote attackers to bypass authentication and create new blog entries by setting the uza parameter to...

7AI Score

0.025EPSS

2006-01-19 01:03 AM
29
cve
cve

CVE-2023-48330

Cross-Site Request Forgery (CSRF) vulnerability in Mike Strand Bulk Comment Remove allows Cross Site Request Forgery.This issue affects Bulk Comment Remove: from n/a through...

8.8CVSS

8.6AI Score

0.001EPSS

2023-11-30 01:15 PM
47
cve
cve

CVE-2003-1456

Album.pl 6.1 allows remote attackers to execute arbitrary commands, when an alternative configuration file is used, via unknown attack...

7.4AI Score

0.013EPSS

2007-10-23 01:00 AM
23
cve
cve

CVE-2023-37990

Cross-Site Request Forgery (CSRF) vulnerability in Mike Perelink Pro plugin <= 2.1.4...

8.8CVSS

8.8AI Score

0.001EPSS

2023-10-03 11:15 AM
30
cve
cve

CVE-2023-25482

Cross-Site Request Forgery (CSRF) vulnerability in Mike Martel WP Tiles plugin <= 1.1.2...

8.8CVSS

8.8AI Score

0.001EPSS

2023-07-18 12:15 PM
14
cve
cve

CVE-2007-4006

Buffer overflow in Mike Dubman Windows RSH daemon (rshd) 1.7 has unknown impact and remote attack vectors, aka ZD-00000034. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionable...

6.5AI Score

0.77EPSS

2022-10-03 04:14 PM
19
cve
cve

CVE-2013-7067

The OG Features module 6.x-1.x before 6.x-1.4 for Drupal does not properly override pages that have an access callback set to false, which allows remote attackers to bypass intended access restrictions via a...

6.9AI Score

0.004EPSS

2013-12-19 04:24 AM
17
cve
cve

CVE-2012-4336

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO or (2) an arbitrary...

5.8AI Score

0.032EPSS

2012-09-15 05:55 PM
24
cve
cve

CVE-2012-2770

The Authen::ExternalAuth extension before 0.11 for Best Practical Solutions RT allows remote attackers to obtain a logged-in session via unspecified vectors related to the "URL of a RSS feed of the...

6.4AI Score

0.003EPSS

2012-08-15 09:55 PM
21
cve
cve

CVE-2008-6429

SQL injection vulnerability in the PrayerCenter (com_prayercenter) component 1.4.9 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view_request action to...

9.9AI Score

0.001EPSS

2009-03-06 06:30 PM
21
cve
cve

CVE-2007-4005

Stack-based buffer overflow in Mike Dubman Windows RSH daemon (rshd) 1.7 allows remote attackers to execute arbitrary code via a long string to the shell port (514/tcp). NOTE: this might overlap...

7.9AI Score

0.77EPSS

2007-07-26 12:30 AM
27
cve
cve

CVE-2006-0404

Note-A-Day Weblog 2.2 stores sensitive data under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to archive/.phpass-admin, which contains encrypted...

6.2AI Score

0.008EPSS

2006-01-25 02:03 AM
20
cve
cve

CVE-2005-1079

SQL injection vulnerability in index.php for zOOm Media Gallery 2.1.2 allows remote attackers to execute arbitrary SQL commands via the catid...

8.8AI Score

0.003EPSS

2005-05-02 04:00 AM
21
cve
cve

CVE-2002-1626

Directory traversal vulnerability in Mike Spice My Calendar before 1.5 allows remote attackers to write arbitrary files via .. (dot dot) sequences in a...

7.2AI Score

0.005EPSS

2005-03-26 05:00 AM
24
cve
cve

CVE-2002-1628

Directory traversal vulnerability in vote.cgi for Mike Spice Mike's Vote CGI before 1.3 allows remote attackers to write arbitrary files via .. (dot dot) sequences in the type...

7.3AI Score

0.005EPSS

2005-03-26 05:00 AM
20
cve
cve

CVE-2002-1627

Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via .. (dot dot) sequences in the quiz...

7.3AI Score

0.005EPSS

2005-03-26 05:00 AM
16
cve
cve

CVE-2002-1600

Directory traversal vulnerability in Mike Spice's My Classifieds (classifieds.cgi) before 1.3 allows remote attackers to overwrite arbitrary files via the category...

7.2AI Score

0.005EPSS

2005-03-13 05:00 AM
18