Search Results (23 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2006-0880 1 Phpoutsourcing 1 Noahs Classifieds 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Noah's Classifieds 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) inf parameter; or, when register_globals is enabled, the (2) upperTemplate and (3) lowerTemplate parameters.
CVE-2006-0882 1 Phpoutsourcing 1 Noahs Classifieds 2026-04-16 N/A
Directory traversal vulnerability in include.php in Noah's Classifieds 1.3 allows remote attackers to include arbitrary local files via the otherTemplate parameter to index.php.
CVE-2005-0676 1 Phpoutsourcing 1 Zorum 2026-04-16 N/A
index.php in Zorum 3.5 allows remote attackers to trigger an SQL error, and possibly inject arbitrary SQL commands, via the search capability.