Shodan
Vulnerabilities
Vulnerable Software
Web4future:  Security Vulnerabilities
CVE-2006-2243
Multiple cross-site scripting (XSS) vulnerabilities in Web4Future News Portal allow remote attackers to inject arbitrary web script or HTML via the ID parameter to (1) comentarii.php or (2) view.php. NOTE: this issue might be resultant from SQL injection.
CVSS Score
5.8
EPSS Score
0.004
Published
2006-05-09
CVE-2006-2244
Multiple SQL injection vulnerabilities in Web4Future News Portal allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) comentarii.php or (2) view.php.
CVSS Score
6.4
EPSS Score
0.004
Published
2006-05-09
CVE-2005-4034
Multiple SQL injection vulnerabilities in Web4Future eDating Professional 5 allow remote attackers to execute arbitrary SQL commands via the (1) s, (2) pg, and (3) sortb parameters to (a) index.php; (4) cid parameter to (b) gift.php and (c) fq.php; and (5) cat parameter to (d) articles.php.
CVSS Score
7.5
EPSS Score
0.008
Published
2005-12-06
CVE-2005-4035
Multiple SQL injection vulnerabilities in Web4Future eCommerce Enterprise Edition 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) prod, and (2) brid parameters to (a) view.php; the (3) the bid parameter to (b) viewbrands.php; and the (4) grp and (5) cat parameters to index.php.
CVSS Score
7.5
EPSS Score
0.008
Published
2005-12-06
CVE-2005-4036
Cross-site scripting (XSS) vulnerability in index.cgi in Web4Future KeyWord Frequency Counter 1.0 allows remote attackers to inject arbitrary web script or HTML via the "remote URL."
CVSS Score
4.3
EPSS Score
0.003
Published
2005-12-06
CVE-2005-4037
SQL injection vulnerability in functions.php in Web4Future Affiliate Manager PRO 4.1 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter.
CVSS Score
7.5
EPSS Score
0.007
Published
2005-12-06
CVE-2005-4038
SQL injection vulnerability in comentarii.php in Web4Future Portal Solutions News Portal allows remote attackers to execute arbitrary SQL commands via the idp parameter.
CVSS Score
7.5
EPSS Score
0.01
Published
2005-12-06
CVE-2005-4039
Directory traversal vulnerability in arhiva.php in Web4Future Portal Solutions News Portal allows remote attackers to read arbitrary files via the dir parameter.
CVSS Score
7.8
EPSS Score
0.047
Published
2005-12-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved