Aggregates CVE and security vulnerability intelligence across all source_workshop-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk sql injection, with potential vendor impact data exposure across vendor surface software deployment and vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-4091 | SQL injection vulnerability in index.php in Web Directory Script 1.5.3 allows remote attackers to execute arbitrary SQL commands via the site parameter in an open action. | [email protected] | 6.8 | 0.95% | 2008-09-15 | 2026-04-23 |
| CVE-2008-4086 | SQL injection vulnerability in index.php in Reciprocal Links Manager 1.1 allows remote attackers to execute arbitrary SQL commands via the site parameter in an open action. | [email protected] | 7.5 | 1.15% | 2008-09-15 | 2026-04-23 |
| CVE-2008-3945 | SQL injection vulnerability in index.php in Words tag 1.2 allows remote attackers to execute arbitrary SQL commands via the word parameter in a claim action. | [email protected] | 7.5 | 1.00% | 2008-09-05 | 2026-04-23 |
| CVE-2006-1499 | SQL injection vulnerability in vCounter.php in vCounter 1.0 allows remote attackers to execute arbitrary SQL commands via the URI (_SERVER[REQUEST_URI] variable). | [email protected] | 7.5 | 1.38% | 2006-03-30 | 2026-04-16 |