CVE-2014-8339
- EPSS 2.09%
- Veröffentlicht 04.11.2014 15:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
SQL injection vulnerability in midroll.php in Nuevolab Nuevoplayer for ClipShare 8.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ch parameter.
CVE-2008-7188
- EPSS 2.3%
- Veröffentlicht 09.09.2009 17:30:01
- Zuletzt bearbeitet 16.06.2026 23:03:47
ClipShare 2.6 does not properly restrict access to certain functionality, which allows remote attackers to change the profile of arbitrary users via a modified uid variable to siteadmin/useredit.php. NOTE: this can be used to recover the password of ...
CVE-2008-6173
- EPSS 1.45%
- Veröffentlicht 19.02.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:01:45
Cross-site scripting (XSS) vulnerability in fullscreen.php in ClipShare Pro 4.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
CVE-2008-5489
- EPSS 1.15%
- Veröffentlicht 12.12.2008 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:00:06
SQL injection vulnerability in channel_detail.php in ClipShare Pro 4, and 2006 through 2007, allows remote attackers to execute arbitrary SQL commands via the chid parameter.
CVE-2008-2793
- EPSS 0.97%
- Veröffentlicht 20.06.2008 11:48:00
- Zuletzt bearbeitet 16.06.2026 22:54:28
SQL injection vulnerability in group_posts.php in ClipShare before 3.0.1 allows remote attackers to execute arbitrary SQL commands via the tid parameter.
CVE-2008-0089
- EPSS 1.01%
- Veröffentlicht 04.01.2008 01:46:00
- Zuletzt bearbeitet 16.06.2026 22:48:55
SQL injection vulnerability in uprofile.php in ClipShare allows remote attackers to execute arbitrary SQL commands via the UID parameter.
CVE-2007-1430
- EPSS 2.27%
- Veröffentlicht 13.03.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:34
PHP remote file inclusion vulnerability in include/adodb-connection.inc.php in ClipShare 1.5.3 allows remote attackers to execute arbitrary PHP code via a URL in the cmd parameter.