CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7610 matches found

exploitpack•added 2010/12/21 12:0 a.m.•13 views

Habari 0.6.5 - Multiple Cross-Site Scripting Vulnerabilities

Habari 0.6.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/45530/info Habari is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to execute...

Exploit DB•added 2010/12/17 12:0 a.m.•15 views

Social Share - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/45485/info Social Share is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...

Exploit DB•added 2010/12/14 12:0 a.m.•29 views

BlogCFC 5.9.6.001 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/45395/info BlogCFC is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2010/12/13 12:0 a.m.•20 views

Articlems 2.0 - 'c[]' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41511/info ArticleMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Exploit DB•added 2010/12/11 12:0 a.m.•21 views

Cetera eCommerce - 'banner.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45374/info Cetera eCommerce is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

exploitpack•added 2010/12/10 12:0 a.m.•13 views

BizDir 05.10 - f_srch Cross-Site Scripting

BizDir 05.10 - fsrch Cross-Site Scripting source: https://www.securityfocus.com/bid/45342/info BizDir is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

Japan Vulnerability Notes•added 2010/12/08 9:26 a.m.•1 views

Movable Type vulnerable to cross-site scripting

Overview Movable Type contains a cross-site scripting vulnerability. Movable Type, a web log system from Six Apart KK, contains a cross-site scripting vulnerability. This vulnerability is different than the previous vulnerabilities disclosed on JVN. Impact An arbitrary script may be executed on t...

4.3CVSS6.2AI score0.00475EPSS

Exploits0References7

exploitpack•added 2010/12/08 12:0 a.m.•11 views

WordPress Plugin Safe Search - v1 Cross-Site Scripting

WordPress Plugin Safe Search - v1 Cross-Site Scripting source: https://www.securityfocus.com/bid/45267/info The Safe Search plugin for Wordpress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execu...

Exploit DB•added 2010/12/08 12:0 a.m.•24 views

WordPress Plugin Safe Search - 'v1' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45267/info The Safe Search plugin for Wordpress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Japan Vulnerability Notes•added 2010/12/08 12:0 a.m.•18 views

JVN#36673836: Movable Type vulnerable to cross-site scripting

Movable Type, a web log system from Six Apart KK, contains a cross-site scripting vulnerability. This vulnerability is different than the previous vulnerabilities disclosed on JVN. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the...

4.3CVSS6AI score0.00475EPSS

Exploit DB•added 2010/12/07 12:0 a.m.•20 views

WordPress Plugin Twitter Feed - 'url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45294/info The Twitter Feed Plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

NVD•added 2010/12/06 1:37 p.m.•16 views

CVE-2010-4407

Multiple cross-site scripting XSS vulnerabilities in index.php in AlGuest 1.1c-patched allow remote attackers to inject arbitrary web script or HTML via the 1 nome nickname, 2 messaggio message, and 3 link homepage parameters...

4.3CVSS5.8AI score0.00285EPSS

Exploits1References4

Packet Storm•added 2010/12/01 12:0 a.m.•34 views

Orbis CMS 1.0.2 Shell Upload

'Orbis CMS' Arbitrary Script Execution Vulnerability CVE-2010-4313 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Orbis CMS' filemanfileupload.php script that allows any authenticated user to upload a PHP script and...

6CVSS0.05744EPSS

securityvulns•added 2010/12/01 12:0 a.m.•70 views

'Orbis CMS' Arbitrary Script Execution Vulnerability (CVE-2010-4313)

'Orbis CMS' Arbitrary Script Execution Vulnerability CVE-2010-4313 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Orbis CMS' filemanfileupload.php script that allows any authenticated user to upload a PHP script and...

6CVSS6.5AI score0.05744EPSS

Exploit DB•added 2010/11/24 12:0 a.m.•34 views

SimpLISTic SQL 2.0 - 'email.cgi' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45040/info SimpLISTic SQL is prone to a cross-site-scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

OpenVAS•added 2010/11/17 12:0 a.m.•30 views

FreeBSD Ports: mailman

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

3.5CVSS6.3AI score0.00393EPSS

Exploits0References3

Exploit DB•added 2010/11/17 12:0 a.m.•19 views

SAP NetWeaver 7.0 - SQL Monitor Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44904/info The SQL Monitor of SAP NetWeaver is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of a...

Exploit DB•added 2010/11/16 12:0 a.m.•21 views

DServe - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44881/info DServe is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2010/11/16 12:0 a.m.•39 views

Eclipse 3.6.1 - Help Server 'help/index.jsp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44883/info Eclipse IDE Help component is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

exploitpack•added 2010/11/16 12:0 a.m.•9 views

DServe - Multiple Cross-Site Scripting Vulnerabilities

DServe - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/44881/info DServe is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by