Filtered by vendor Jportal
Subscribe
Total
9 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2007-0912 | 1 Jportal | 1 Jportal Web Server | 2018-10-16 | 9.3 HIGH | N/A |
| Cross-Site Request Forgery (CSRF) vulnerability in admin/admin.adm.php in Jportal 2.3.1, and possibly earlier, allows remote attackers to perform privileged actions as administrators by tricking the admin into accessing a URL with modified arguments to admin/admin.adm.php. | |||||
| CVE-2008-6451 | 1 Jportal | 1 Jportal | 2017-09-28 | 7.5 HIGH | N/A |
| SQL injection vulnerability in humor.php in jPORTAL 2 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might overlap CVE-2004-2036 or CVE-2005-3509. | |||||
| CVE-2007-5912 | 1 Jportal | 1 Jportal Web Portal | 2017-09-28 | 7.5 HIGH | N/A |
| SQL injection vulnerability in mailer.php in jPORTAL 2 allows remote attackers to execute arbitrary SQL commands via the to parameter. | |||||
| CVE-2007-5973 | 1 Jportal | 1 Jportal Web Portal | 2017-09-28 | 7.5 HIGH | N/A |
| SQL injection vulnerability in articles.php in JPortal 2.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter. | |||||
| CVE-2007-5974 | 1 Jportal | 1 Jportal Web Portal | 2017-09-28 | 7.5 HIGH | N/A |
| SQL injection vulnerability in mailer.php in JPortal 2 allows remote attackers to execute arbitrary SQL commands via the to parameter. | |||||
| CVE-2004-2036 | 1 Jportal | 1 Jportal Web Portal | 2017-07-10 | 7.5 HIGH | N/A |
| SQL injection vulnerability in the art_print function in print.inc.php in unknown versions of jPortal before 2.3.1 allows remote attackers to inject arbitrary SQL commands via the id parameter. | |||||
| CVE-2005-3052 | 1 Jportal | 1 Jportal Web Portal | 2016-10-17 | 7.5 HIGH | N/A |
| SQL injection vulnerability in module/down.inc.php in jportal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the search field to download.php. | |||||
| CVE-2005-1071 | 1 Jportal | 1 Jportal Web Portal | 2016-10-17 | 7.5 HIGH | N/A |
| SQL injection vulnerability in banner.inc.php in JPortal Web Portal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the haslo parameter. | |||||
| CVE-2005-3509 | 1 Jportal | 1 Jportal Web Portal | 2011-03-07 | 7.5 HIGH | N/A |
| Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php. | |||||