CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vincent Leclercq: >> News Security Vulnerabilities

CVE-2006-3384

SQL injection vulnerability in divers.php in Vincent Leclercq News 5.2 allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) texte parameters.

CVSS Score

5.1

EPSS Score

0.009

Published

2006-07-06

CVE-2006-3385

Cross-site scripting (XSS) vulnerability in divers.php in Vincent Leclercq News 5.2 allows remote attackers to inject arbitrary web script or HTML via the (1) id and (2) disabled parameters.

CVSS Score

5.8

EPSS Score

0.006

Published

2006-07-06

CVE-2006-3386

index.php in Vincent Leclercq News 5.2 allows remote attackers to obtain sensitive information, such as the installation path, via a mail[] parameter with invalid values.

CVSS Score

5.0

EPSS Score

0.004

Published

2006-07-06

Page 1

Vulnerabilities

Vulnerable Software

Vincent Leclercq: >> News Security Vulnerabilities

Products

Pricing

Contact Us