Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
PowerscriptsPowerclan

3 matches found

CVE
CVEadded 2006/04/18 10:0 a.m.47 views

CVE-2006-1805

CVE-2006-1805 affects PowerClan 1.14 and its member.php handling. The vulnerability is a SQL injection in the memberid parameter that allows remote attackers to execute arbitrary SQL commands, as described in the CVE entry and corroborated by multiple sources (NVD/PRION/CVEList). The available do...

7.5CVSS8.4AI score0.01365EPSS
CVE
CVEadded 2009/02/23 3:0 p.m.40 views

CVE-2009-0707

CVE-2009-0707 is a SQL injection vulnerability in PowerClan 1.14a, specifically in admin/index.php where the loginemail parameter (login field) can be used to execute arbitrary SQL commands. The available connected documents confirm the affected component (admin/index.php), the software/version (...

7.5CVSS8.7AI score0.02047EPSS
Web
CVE
CVEadded 2006/12/23 1:0 a.m.32 views

CVE-2006-6715

PowerClan 1.14a and earlier is affected by a PHP remote file inclusion in footer.inc.php. The root cause is a user-controllable URL passed via the settings[footer] parameter when register_globals is enabled, allowing remote attackers to execute arbitrary PHP code. This vulnerability can enable co...

5.1CVSS7.9AI score0.02921EPSS