1scripts : Security Vulnerabilities, CVEs,
SQL injection vulnerability in showads.php in Z1Exchange allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-03-02
Updated
2017-08-17
Cross-site scripting (XSS) vulnerability in showads.php in Z1Exchange 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
Max CVSS
4.3
EPSS Score
0.19%
Published
2009-03-02
Updated
2017-08-17
SQL injection vulnerability in edit.php in Z1Exchange 1.0 allows remote attackers to execute arbitrary SQL commands via the site parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-02-25
Updated
2017-09-29
Directory traversal vulnerability in list.php in 1Scripts CodeDB 1.1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Max CVSS
6.8
EPSS Score
1.40%
Published
2008-07-16
Updated
2017-09-29
4 vulnerabilities found