CVE Tools

epic designs

Web & CMS Pluginsunknown

10

Cumulative CVEs

4

Monthly snapshots

#18

Peak rank

Top products

Latest CVEs

The 10 most recently published vulnerabilities affecting epic designs.

CVE-2006-6046Multiple cross-site scripting (XSS) vulnerabilities in eggblog 3.1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) edit parameter to (a) admin/articles.php or (b) admin/...6.8Nov 22, 2006
CVE-2006-2741Cross-site scripting (XSS) vulnerability in Epicdesigns tinyBB 0.3 allow remote attackers to inject arbitrary web script or HTML via the q parameter in forgot.php, which is echoed in an error messa...6.8Jun 1, 2006
CVE-2006-2740Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote attackers to execute arbitrary SQL commands via the (1) q parameter in (a) forgot.php, and the (2) username and (3) pas...6.8Jun 1, 2006
CVE-2006-2739PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the tinybb_foo...5.1Jun 1, 2006
CVE-2006-2727home/register.php in Eggblog before 3.0 allows remote attackers to change the password of administrators and possibly other users via a modified username parameter.7.5Jun 1, 2006
CVE-2006-2725SQL injection vulnerability in rss/posts.php in Eggblog before 3.07 allows remote attackers to execute arbitrary SQL commands via the id parameter.6.4Jun 1, 2006
CVE-2006-0350Cross-site scripting (XSS) vulnerability in eggblog 2.0 allow remote attackers to inject arbitrary web script or HTML via the message field to topic.php.4.3Jan 21, 2006
CVE-2006-0349SQL injection vulnerability in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to blog.php.7.5Jan 21, 2006
CVE-2005-4547Cross-site scripting (XSS) vulnerability in home/search.php in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the q parameter, as used by the Keyword and Search fields.4.3Dec 28, 2005
CVE-2005-4546search.php in eggblog 2.0 allows remote attackers to obtain the full path via an invalid q parameter, as used by the Keyword and Search fields, possibly due to an SQL injection vulnerability.7.8Dec 28, 2005