CVE Vulnerability

Home ยป CVE’s

CVE’s

CVE
Vendors
Products
Updated
CVSS v2
CVSS v3
CVE-2008-2207
Maian Gallery, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
Cross-site scripting (XSS) vulnerability in admin/index.php in Maian Gallery 2.0 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search action.
CVE-2008-2206
Maian Music, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
Multiple cross-site scripting (XSS) vulnerabilities in Maian Music 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) keywords parameter in a search action to index.php, and the (2) msg_script parameter to admin/inc/footer.php.
CVE-2008-2205
Maian Music, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
SQL injection vulnerability in index.php in Maian Music 1.1 allows remote attackers to execute arbitrary SQL commands via the album parameter in an album action.
CVE-2008-2204
Maian Search, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
Multiple cross-site scripting (XSS) vulnerabilities in admin/inc/header.php in Maian Search 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) header, (2) header2, (3) header3, (4) header4, (5) header5, (6) header6, (7) header7, (8) header8, and (9) header9 parameters.
CVE-2008-2203
Maian Search, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
SQL injection vulnerability in search.php in Maian Search 1.1 allows remote attackers to execute arbitrary SQL commands via the keywords parameter in a search action.
CVE-2008-2202
Maian Uploader, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
Multiple cross-site scripting (XSS) vulnerabilities in Maian Uploader 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) keywords parameter to upload/admin/index.php in a search action, the (2) msg_charset and (3) msg_header9 parameters to admin/inc/header.php, and the (4) keywords parameter to index.php in a search action.
CVE-2008-2201
Maian Recipe, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
Multiple cross-site scripting (XSS) vulnerabilities in admin/inc/header.php in Maian Recipe 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) header, (2) header2, (3) header3, (4) header4, (5) header5, (6) header6, (7) header7, (8) header8, and (9) header9 parameters.
CVE-2008-2200
Maian Weblog, Maianscriptworld
Maianaffiliate, Maian_cart, Maian_gallery, Maian_greeting, Maian_greetings, Maian_guestbook, Maian_links, Maian_music, Maian_recipe, Maian_search
2018-10-11
N/A
N/A
Multiple cross-site scripting (XSS) vulnerabilities in Maian Weblog 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) keywords parameter to admin/index.php in a blogs search action, the (2) msg_charset and (3) msg_header9 parameters to admin/inc/header.php, and the (4) keywords parameter to index.php in a search action.
CVE-2008-2199
2018-10-11
N/A
N/A
PHP remote file inclusion vulnerability in kmitaadmin/kmitam/htmlcode.php in Kmita Mail 3.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the file parameter.
CVE-2008-2198
2018-10-11
N/A
N/A
PHP remote file inclusion vulnerability in kmitaadmin/kmitat/htmlcode.php in Kmita Tellfriend 2.0 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the file parameter.
1 501 502 503 504 505 11,258