CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xeobook: >> Xeobook Security Vulnerabilities

CVE-2006-5287

Multiple SQL injection vulnerabilities in sign.php in Xeobook 0.93 allow remote attackers to execute arbitrary SQL commands via (1) the User-Agent HTTP header, or the (2) gb_entry_text, (3) gb_location, (4) gb_fullname, or (5) gb_sex parameters.

CVSS Score

5.1

EPSS Score

0.005

Published

2006-10-13

CVE-2005-3292

Multiple cross-site scripting (XSS) vulnerabilities in Xeobook 0.93 allow remote attackers to inject arbitrary web script or HTML via Javascript events in tages such as <b>.

CVSS Score

4.3

EPSS Score

0.004

Published

2005-10-23

Page 1

Vulnerabilities

Vulnerable Software

Xeobook: >> Xeobook Security Vulnerabilities

Products

Pricing

Contact Us