availscript CVE Vulnerabilities & CVE List (9)

Products (CPE): — CVEs: 9

availscript vulnerability overview

Aggregates CVE and security vulnerability intelligence across all availscript-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk sql injection and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact data exposure and vendor impact session compromise.

Vulnerability distribution trend (last 24 months)

Showing 19 of 9 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2008-7021 Unrestricted file upload vulnerability in editlogo.php in AvailScript Jobs Portal Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as an image or logo, then accessing it via a direct request to the file in an unspecified directory. [email protected] 6.0 6.34% 2009-08-21 2026-04-23
CVE-2008-6900 Unrestricted file upload vulnerability in "Add Pen/Author Name" feature in addpen.php in AvailScript Article Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photos/. [email protected] 6.5 6.80% 2009-08-06 2026-04-23
CVE-2008-6037 SQL injection vulnerability in view.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the v parameter. [email protected] 7.5 0.41% 2009-02-03 2026-04-23
CVE-2008-4375 SQL injection vulnerability in viewprofile.php in Availscript Classmate Script allows remote attackers to execute arbitrary SQL commands via the p parameter. [email protected] 7.5 0.41% 2008-10-01 2026-04-23
CVE-2008-4373 SQL injection vulnerability in job_seeker/applynow.php in AvailScript Job Portal Script allows remote attackers to execute arbitrary SQL commands via the jid parameter. [email protected] 7.5 0.41% 2008-10-01 2026-04-23
CVE-2008-4372 Cross-site scripting (XSS) vulnerability in articles.php in AvailScript Article Script allows remote attackers to inject arbitrary web script or HTML via the aIDS parameter. [email protected] 4.3 3.29% 2008-10-01 2026-04-23
CVE-2008-4371 SQL injection vulnerability in articles.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the aIDS parameter. [email protected] 7.5 0.39% 2008-10-01 2026-04-23
CVE-2008-4370 Multiple cross-site scripting (XSS) vulnerabilities in Availscript Photo Album allow remote attackers to inject arbitrary web script or HTML via the (1) sid parameter to pics.php and the (2) a parameter to view.php. [email protected] 4.3 3.13% 2008-10-01 2026-04-23
CVE-2008-4369 SQL injection vulnerability in pics.php in Availscript Photo Album allows remote attackers to execute arbitrary SQL commands via the sid parameter. [email protected] 7.5 0.41% 2008-10-01 2026-04-23
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence