Dream4 Koobi vulnerabilities
3 known vulnerabilities affecting dream4/koobi.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-6210P3HIGHCVSS 7.5PoCv4.4v5.42009-02-20
CVE-2008-6210 [HIGH] CWE-89 CVE-2008-6210: SQL injection vulnerability in index.php in dream4 Koobi 4.4 and 5.4 allows remote attackers to exec
SQL injection vulnerability in index.php in dream4 Koobi 4.4 and 5.4 allows remote attackers to execute arbitrary SQL commands via the img_id parameter in the gallerypic page.
nvd
CVE-2008-2036P3HIGHCVSS 7.5PoCv6.252008-04-30
CVE-2008-2036 [HIGH] CWE-89 CVE-2008-2036: SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the poll_id parameter in a poll action.
nvd
CVE-2005-4588P4MEDIUMCVSS 4.3PoCv5.02005-12-30
CVE-2005-4588 [MEDIUM] CVE-2005-4588: Cross-site scripting (XSS) vulnerability in Koobi 5 allows remote attackers to inject arbitrary web
Cross-site scripting (XSS) vulnerability in Koobi 5 allows remote attackers to inject arbitrary web script or HTML via nested, malformed url BBCode tags. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd