Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
ArticlefriendlyArticle Friendly

3 matches found

CVE
CVEadded 2008/08/13 12:0 a.m.40 views

CVE-2008-3649

CVE-2008-3649 is a SQL injection in Article Friendly Standard’s categorydetail.php, exploited via the Cat parameter to allow remote execution of arbitrary SQL. Documents across NVD, CVE List, PRION, and CVELIST confirm the vulnerable component and parameter; the reported impact is arbitrary SQL e...

6.8CVSS8.4AI score0.00897EPSS
CVE
CVEadded 2008/08/13 7:0 p.m.39 views

CVE-2008-3670

CVE-2008-3670 describes a SQL injection in the PHP file authordetail.php of Article Friendly Pro, allowing remote attackers to execute arbitrary SQL commands via the autid parameter. The vulnerability arises from unsafely handling user input in a database query, with impact described as the abili...

6.8CVSS8.4AI score0.00927EPSS
CVE
CVEadded 2010/06/02 6:14 p.m.34 views

CVE-2010-2136

CVE-2010-2136 describes a directory traversal vulnerability in Article Friendly’s admin/index.php. When magic_quotes_gpc is disabled, attackers can read arbitrary files by injecting a ".." in the filename parameter. Affected software is the Article Friendly package; the underlying issue is improp...

6.8CVSS6.8AI score0.00309EPSS
Web