Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Hinton DesignPhpstatus

3 matches found

CVE
CVEadded 2006/02/07 6:0 p.m.51 views

CVE-2006-0570

phpstatus 1.0 is affected by multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL and bypass authentication via the check.php username parameter and via cookie-based authentication when magic_quotes_gpc is off. Official details in the connected sources descr...

7.5CVSS8.7AI score0.01412EPSS
CVE
CVEadded 2006/02/07 6:0 p.m.49 views

CVE-2006-0571

CVE-2006-0571 affects phpstatus 1.0 with multiple XSS weaknesses that allow remote attackers to inject arbitrary web script or HTML via the administrative interface. The vulnerability is described as unknown attack vectors in the admin area; the provided documents do not specify affected patch ve...

4.3CVSS5.7AI score0.01299EPSS
CVE
CVEadded 2006/02/07 6:0 p.m.47 views

CVE-2006-0572

CVE-2006-0572 affects phpstatus 1.0, where authentication can be bypassed because cookies are used to identify the user without verifying a password. The vulnerability is tied to the cookies-based authentication flow (vulnerable in check.php), enabling remote attackers to bypass login. Exploit in...

7.5CVSS6.7AI score0.0164EPSS