A vulnerability classified as critical has been found in Furqan node-whois. Affected is an unknown function of the file index.coffee. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution'). It is possible to launch the attack remotely....
9.8CVSS
9.6AI Score
0.001EPSS
Cross-site scripting (XSS) vulnerability in modules/mod_yj_whois.php in the YJ Whois component 1.0x and 1.5.x for Joomla! allows remote attackers to inject arbitrary web script or HTML via the domain parameter to index.php. NOTE: some of these details are obtained from third party...
5.8AI Score
0.001EPSS
Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain name...
8AI Score
0.003EPSS
Cross-site scripting (XSS) vulnerability in mwhois.php in Matt Wilson Matt's Whois (MWhois) allows remote attackers to inject arbitrary web script or HTML via the domain...
5.7AI Score
0.002EPSS
The wp-whois-domain plugin 1.0.0 for WordPress has XSS via the pages/func-whois.php domain...
6.1CVSS
6AI Score
0.001EPSS
Multiple cross-site scripting (XSS) vulnerabilities in Particle Soft Particle Whois 1.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) the target parameter in index.php and (2) the "input...
5.8AI Score
0.007EPSS
Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line...
7.9AI Score
0.007EPSS
Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "whois"...
7.7AI Score
0.188EPSS
Matt's Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain...
7.6AI Score
0.005EPSS
Whois Internic Lookup program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain...
7.6AI Score
0.005EPSS
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain...
7.6AI Score
0.055EPSS