Gregarius: >> Gregarius >> 0.5.2 Security Vulnerabilities
SQL injection vulnerability in ajax.php in Gregarius 0.5.4 and earlier allows remote attackers to execute arbitrary SQL commands via the rsargs array parameter in an __exp__getFeedContent action.
CVSS Score
7.5
EPSS Score
0.005
Published
2008-07-30
Multiple cross-site scripting (XSS) vulnerabilities in Gregarius 0.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) rss_query parameter to search.php or (2) tag parameter to tags.php.
CVSS Score
4.3
EPSS Score
0.005
Published
2006-03-07
Multiple SQL injection vulnerabilities in Gregarius 0.5.2 allow remote attackers to execute arbitrary SQL commands via the (1) folder parameter to feed.php or (2) rss_query parameter to search.php.
CVSS Score
6.4
EPSS Score
0.006
Published
2006-03-07