Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Php Script ToolsPsy Auction

2 matches found

CVE
CVEadded 2007/02/12 11:0 p.m.37 views

CVE-2006-7005

The CVE-2006-7005 entry describes an SQL injection in PSY Auction’s item.php, exploitable via the id parameter to allow remote execution of arbitrary SQL. The vulnerability is triggered through a manipulable id value, leading to partial confidentiality, integrity, and availability impact as per t...

7.5CVSS8.1AI score0.00292EPSS
CVE
CVEadded 2007/02/12 11:0 p.m.32 views

CVE-2006-7004

The CVE-2006-7004 entry documents a Cross-site Scripting (XSS) vulnerability in the PSY Auction project, specifically in email_request.php, exploitable via the user_id parameter. The vulnerability description indicates that remote attackers can inject arbitrary web script or HTML, implying potent...

6.8CVSS5.6AI score0.00401EPSS