Arab Portal : Security Vulnerabilities, CVEs,

CVE-2006-1666

SQL injection vulnerability in forum.php in Arab Portal 2.0.1 stable allows remote attackers to execute arbitrary SQL commands via the mineID parameter.
Max CVSS
7.5
EPSS Score
0.33%
Published
2006-04-07
Updated
2018-10-18

CVE-2006-1665

Multiple cross-site scripting (XSS) vulnerabilities in Arab Portal 2.0.1 stable allow remote attackers to inject arbitrary web script or HTML via the (1) adminJump and (2) forum_middle parameters in (a) forum.php, and the (3) form parameter in (b) members.php, (c) pm.php, and (d) mail.php.
Max CVSS
2.6
EPSS Score
0.26%
Published
2006-04-07
Updated
2018-10-18

CVE-2006-1504

Multiple cross-site scripting (XSS) vulnerabilities in Arab Portal 2.0 (aka Arab Dynamic Portal or ADP) stable allow remote attackers to inject arbitrary web script or HTML via the title parameter in (1) online.php and (2) download.php.
Max CVSS
5.1
EPSS Score
1.26%
Published
2006-03-30
Updated
2018-10-18

CVE-2005-4221

SQL injection vulnerability in link.php in Arab Portal System 2 Beta 2 allows remote attackers to execute arbitrary SQL commands via the (1) PHPSESSID (session ID) or (2) REQUEST_URI (query string).
Max CVSS
7.5
EPSS Score
11.10%
Published
2005-12-14
Updated
2018-10-19

CVE-2005-2546

Arab Portal 2.0 allows remote attackers to obtain sensitive information via a long (1) username or (2) password, which reveals the path in an error message when the undefined "errmsg" function is called.
Max CVSS
5.0
EPSS Score
0.44%
Published
2005-08-10
Updated
2016-10-18
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close