Skip to main content

Banana Dance

3 CVEs product

Monthly

CVE-2012-5243 MEDIUM POC THREAT This Month

functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to read arbitrary database information via a crafted request. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.6%.

PHP Privilege Escalation Banana Dance
NVD Exploit-DB
CVSS 2.0
5.0
EPSS
11.6%
CVE-2012-5242 MEDIUM POC This Month

Directory traversal vulnerability in functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to include and execute arbitrary local files via a .. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Path Traversal PHP Banana Dance
NVD Exploit-DB
CVSS 2.0
6.8
EPSS
5.1%
CVE-2012-5244 HIGH POC This Week

Multiple SQL injection vulnerabilities in Banana Dance B.2.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) return, (2) display, (3) table, or (4) search parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Banana Dance
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
2.8%
EPSS 12% CVSS 5.0
MEDIUM POC THREAT This Month

functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to read arbitrary database information via a crafted request. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.6%.

PHP Privilege Escalation Banana Dance
NVD Exploit-DB
EPSS 5% CVSS 6.8
MEDIUM POC This Month

Directory traversal vulnerability in functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to include and execute arbitrary local files via a .. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Path Traversal PHP Banana Dance
NVD Exploit-DB
EPSS 3% CVSS 7.5
HIGH POC This Week

Multiple SQL injection vulnerabilities in Banana Dance B.2.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) return, (2) display, (3) table, or (4) search parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Banana Dance
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy