Lucene search
K
IndexcorEzdatabase

6 matches found

CVE
CVE
added 2006/01/15 11:0 a.m.97 views

CVE-2006-0214

CVE-2006-0214 affects ezDatabase 2.0 and earlier. A vulnerability in the application’s PHP code allows remote attackers to execute arbitrary PHP via an eval injection in the db_id parameter to visitorupload.php, demonstrated with phpinfo and include() calls. The connected documents confirm the fl...

7.5CVSS7.9AI score0.02806EPSS
CVE
CVE
added 2007/01/30 6:0 p.m.50 views

CVE-2007-0592

CVE-2007-0592 is an XSS vulnerability in EzDatabase 2.1.3. The affected component is EzDatabase’s admin/login.php and the Admin Panel Database, allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors. The NVD entry indicates a CVSSv2 base score of 6.8 (Medium) wit...

6.8CVSS5.7AI score0.0135EPSS
Web
CVE
CVE
added 2006/01/19 1:0 a.m.44 views

CVE-2006-0315

CVE-2006-0315 affects EZDatabase prior to 2.1.2. The vulnerability stems from improper cleansing of the p parameter when constructing and including a .php filename, enabling directory traversal. This can lead to cross-site scripting (XSS) and path disclosure. The available connected documents pro...

5.8CVSS5.8AI score0.04834EPSS
CVE
CVE
added 2005/12/17 12:0 a.m.41 views

CVE-2005-4303

CVE-2005-4303 affects ezDatabase 2.1.2 and earlier via a SQL injection in index.php where the db_id parameter enables remote attackers to execute arbitrary SQL commands. The vulnerability is documented with a High base score (7.5, NETWORK attack, no authentication) and partial impact on confident...

7.5CVSS8.8AI score0.01108EPSS
CVE
CVE
added 2005/12/17 12:0 a.m.41 views

CVE-2005-4304

CVE-2005-4304 affects ezDatabase versions up to 2.1.2 and earlier. The issue is triggered by an invalid cat_id parameter in index.php, leading to leakage of a full pathname in an error message. The description notes uncertainty about details due to report terminology problems and partial feedback...

5CVSS6.7AI score0.01548EPSS
CVE
CVE
added 2005/12/17 12:0 a.m.39 views

CVE-2005-4302

The CVE-2005-4302 entry concerns a directory traversal vulnerability in ezDatabase

5CVSS7.1AI score0.02509EPSS