Land Down Under@801 Security Vulnerabilities and Issues — Land Down Under@801 CVE List

Lucene search

NeocromeLand Down Under801

5 matches found

CVE•added 2005/09/02 11:3 p.m.•46 views

CVE-2005-2788

Multiple SQL injection vulnerabilities in Land Down Under (LDU) 801 and earlier allow remote attackers to execute arbitrary SQL commands via the c parameter to (1) events.php, (2) index.php, or (3) list.php.

7.5CVSS8.5AI score0.00343EPSS

CVE•added 2007/01/01 11:0 p.m.•46 views

CVE-2006-6835

SQL injection vulnerability in Journal.inc.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote attackers to execute arbitrary SQL commands via the w parameter to journal.php.

7.5CVSS8.8AI score0.00384EPSS

CVE•added 2005/09/14 8:3 p.m.•40 views

CVE-2005-2884

Cross-site scripting (XSS) vulnerability in events.php in Land Down Under (LDU) 801 and earlier allows remote attackers to inject arbitrary web script or HTML via the Description field in an event.

4.3CVSS5.7AI score0.00409EPSS

CVE•added 2006/12/29 11:0 a.m.•38 views

CVE-2005-4821

Multiple SQL injection vulnerabilities in Land Down Under (LDU) v801 and earlier allow remote attackers to execute arbitrary SQL commands via parameters including (1) the m parameter in auth.php, (2) the f parameter in events.php, or (3) the e parameter in plug.php.

7.5CVSS8.5AI score0.00508EPSS

CVE•added 2006/04/29 10:2 a.m.•38 views

CVE-2006-2096

plug.php in Land Down Under (LDU) 802 and earlier allows remote attackers to obtain sensitive information via an invalid (1) month or (2) year parameter, which reveals the path in an error message.

5CVSS6.3AI score0.00391EPSS