Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
NicephpscriptsNice Php Faq Script

2 matches found

CVE
CVEadded 2017/10/31 7:0 a.m.63 views

CVE-2017-15988

CVE-2017-15988 concerns the Nice PHP FAQ Script , where an unsafe handling of the GET parameter nice_theme in index.php leads to SQL injection. The root cause is lack of input sanitization/parameterization, enabling an attacker to inject SQL commands via the nice_theme parameter. Impact per sourc...

9.8CVSS9.8AI score0.01411EPSS
Web
CVE
CVEadded 2009/03/25 6:0 p.m.42 views

CVE-2008-6525

The CVE CVE-2008-6525 affects the Nice PHP FAQ Script Admin Panel and is caused by an SQL injection in the Password field (pass). Remote attackers can execute arbitrary SQL commands through this input vector. Exploitation is supported by external references (e.g., Exploit-DB). No remediation deta...

7.5CVSS10AI score0.00284EPSS