Page 2 of 14 results (0.001 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2006-5774

https://notcve.org/view.php?id=CVE-2006-5774

06 Nov 2006 — Cross-site scripting (XSS) vulnerability in Hyper NIKKI System before 2.19.9 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Hyper NIKKI System anterior a 2.19.9 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores desconocidos. • http://jvn.jp/jp/JVN%2388325166/index.html •

CVSS: 8.8EPSS: 0%CPEs: 25EXPL: 0

CVE-2006-3671

https://notcve.org/view.php?id=CVE-2006-3671

18 Jul 2006 — Cross-site request forgery (CSRF) vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors. Vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en la función communicate de estmaster.c para Hyper Estraier versiones anteriores a 1.3.3 permite a atacantes remotos realizar acciones no autorizadas como otros usuarios mediante vectores desconocidos. • http://secunia.com/advisories/21049 •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2005-3421

https://notcve.org/view.php?id=CVE-2005-3421

01 Nov 2005 — estcmd in Hyper Estraier 1.0.1 on Windows systems allows remote attackers to read unauthorized files via a crafted search request for a filename that contains Unicode characters. • http://jvn.jp/jp/JVN%2318282718/index.html •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2005-1305

https://notcve.org/view.php?id=CVE-2005-1305

26 Apr 2005 — The hyper.cgi script allows remote attackers to read arbitrary files via a full pathname in the argument. • http://marc.info/?l=bugtraq&m=111445410220152&w=2 •