Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SpirateSmall Pirate

2 matches found

CVE
CVEadded 2010/07/22 10:0 a.m.48 views

CVE-2009-4937

CVE-2009-4937 describes an XSS in Small Pirate (SPirate) 2.1. An attacker can inject arbitrary script/HTML via an onmouseover in an img BBCode tag inside a url BBCode tag. The records consistently cite Cross-site scripting without details on exploit status or affected versions beyond 2.1. The con...

4.3CVSS5.8AI score0.01131EPSS
CVE
CVEadded 2010/07/22 10:0 a.m.47 views

CVE-2009-4936

CVE-2009-4936 affects Small Pirate (SPirate) 2.1 with multiple SQL injection vulnerabilities. Remote attackers can inject through the id parameter in: (1) the default URI in an RSS .xml action, (2) pag1.php, (3) pag1-guest.php, (4) rss-comment_post.php (aka rss-coment_post.php), or (5) rss-pic-co...

7.5CVSS8.8AI score0.01828EPSS