Shodan
Vulnerabilities
Vulnerable Software
Orbitscripts:  Security Vulnerabilities
CVE-2014-2540
SQL injection vulnerability in OrbitScripts Orbit Open Ad Server before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the site_directory_sort_field parameter to guest/site_directory.
CVSS Score
7.5
EPSS Score
0.011
Published
2014-04-11
CVE-2008-3152
SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2008-07-11
CVE-2006-2140
Multiple cross-site scripting (XSS) vulnerabilities in OrbitHYIP 2.0 and earlier allow remote attackers to inject arbitrary web script via the (1) referral parameter to signup.php or (2) id parameter to members.php.
CVSS Score
5.8
EPSS Score
0.009
Published
2006-05-02
CVE-2005-3814
Multiple cross-site scripting (XSS) vulnerabilities in SmartPPC Pro allow remote attackers to inject arbitrary web script or HTML via the username parameter in (1) directory.php, (2) frames.php, and (3) search.php.
CVSS Score
4.3
EPSS Score
0.009
Published
2005-11-26


Products
Pricing
Contact Us

Shodan ® - All rights reserved