Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
AvscriptsAv Arcade

2 matches found

CVE
CVEadded 2010/08/04 7:0 p.m.38 views

CVE-2010-2933

The CVE-2010-2933 entry describes an SQL injection in AV Arcade 3 (AV Scripts) that can be triggered through the ava_code cookie sent to the main page (index.php, login task). Affected component: web application logic handling the ava_code cookie. Root cause: improper handling/validation of the c...

7.5CVSS8.7AI score0.00961EPSS
CVE
CVEadded 2007/07/04 4:0 p.m.36 views

CVE-2007-3563

CVE-2007-3563 describes an SQL injection in AV Arcade 2.1b: the vulnerability is in includes/view_page.php, exploitable via the id parameter in a view_page action to index.php. The issue allows remote attackers to execute arbitrary SQL commands, per the sources in the CVE record. The connected do...

7.5CVSS8.3AI score0.01214EPSS
Web