Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Php Gift RegistryPhpgiftreg

2 matches found

CVE
CVEadded 2005/02/10 5:0 a.m.42 views

CVE-2005-0292

PHP Gift Registry (phpGiftReg) 1.4.0 (and possibly earlier versions before 1.5.0b1) contains multiple SQL injection vulnerabilities in index.php. The issues allow remote attackers to inject SQL via the parameters messageid, shopper, shopfor, or itemid, potentially enabling arbitrary SQL command e...

7.5CVSS9.1AI score0.00963EPSS
CVE
CVEadded 2005/10/25 4:0 a.m.35 views

CVE-2004-2484

PHP Gift Registry 1.3.5 and earlier contain a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via the message parameter to event.php or index.php. The description indicates the vulnerability is triggered through user-supplied input in t...

4.3CVSS6AI score0.00558EPSS