CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-22225
https://notcve.org/view.php?id=CVE-2020-22225
Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoadForm function. Se ha detectado que Stivasoft (Phpjabbers) Fundraising Script versión v1.0, contiene una vulnerabilidad de inyección SQL por medio de la función pjActionLoadForm • https://pastebin.com/cZFwMb5F • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2020-22224
https://notcve.org/view.php?id=CVE-2020-22224
Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionPreview function. Se ha detectado que Stivasoft (Phpjabbers) Fundraising Script versión v1.0, contiene una vulnerabilidad de tipo cross-site scripting (XSS) por medio de la función pjActionPreview • https://pastebin.com/cZFwMb5F • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-22223
https://notcve.org/view.php?id=CVE-2020-22223
Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoad function. Se ha detectado que Stivasoft (Phpjabbers) Fundraising Script versión v1.0, contiene una vulnerabilidad de inyección SQL por medio de la función pjActionLoad • https://pastebin.com/cZFwMb5F • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2020-22222
https://notcve.org/view.php?id=CVE-2020-22222
Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionLoadCss function. Se ha detectado que Stivasoft (Phpjabbers) Fundraising Script versión v1.0, contiene una vulnerabilidad de tipo cross-site scripting (XSS) por medio de la función pjActionLoadCss • https://pastebin.com/cZFwMb5F • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2017-15384
https://notcve.org/view.php?id=CVE-2017-15384
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action. rate-me.php en Rate Me 1.0 tiene XSS mediante el campo id en una acción rate. • https://cxsecurity.com/issue/WLB-2016110122 https://packetstormsecurity.com/files/139696/ratemephp-xss.txt • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •