CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7604 matches found

Exploit DB•added 2007/02/24 12:0 a.m.•28 views

Active Calendar 1.2 - '/data/y_3.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

exploitpack•added 2007/02/24 12:0 a.m.•22 views

Active Calendar 1.2 - datajs.php?css Cross-Site Scripting

Active Calendar 1.2 - datajs.php?css Cross-Site Scripting source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

Exploit DB•added 2007/02/24 12:0 a.m.•26 views

Active Calendar 1.2 - '/data/y_2.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

Cvelist•added 2007/02/23 1:0 a.m.•18 views

CVE-2007-1085

Cross-site scripting XSS vulnerability in Google Desktop allows remote attackers to bypass protection schemes and inject arbitrary web script or HTML, and possibly gain full access to the system, by using an XSS vulnerability in google.com to extract the signature for the internal web server, the...

5.7AI score0.10445EPSS

Exploits1References8

exploitpack•added 2007/02/21 12:0 a.m.•9 views

CedStat 1.31 - index.php Cross-Site Scripting

CedStat 1.31 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...

exploitpack•added 2007/02/20 12:0 a.m.•8 views

AbleDesign MyCalendar 2.20.3 - index.php Multiple Cross-Site Scripting Vulnerabilities

AbleDesign MyCalendar 2.20.3 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/22635/info MyCalendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage thes...

Exploit DB•added 2007/02/20 12:0 a.m.•28 views

AbleDesign MyCalendar 2.20.3 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/22635/info MyCalendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2007/02/19 12:0 a.m.•26 views

Spyce 2.1.3 - spyce/examples/automaton.spy Direct Request Error Message Information Disclosure

source: https://www.securityfocus.com/bid/27898/info Spyce is prone to multiple input-validation vulnerabilities that can lead to information disclosure or client-side script execution. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

exploitpack•added 2007/02/19 12:0 a.m.•17 views

Spyce 2.1.3 - docsexampleshandlervalidate.spy?x Cross-Site Scripting

Spyce 2.1.3 - docsexampleshandlervalidate.spy?x Cross-Site Scripting source: https://www.securityfocus.com/bid/27898/info Spyce is prone to multiple input-validation vulnerabilities that can lead to information disclosure or client-side script execution. An attacker may leverage these issues to...

Japan Vulnerability Notes•added 2007/02/14 12:0 a.m.•27 views

JVN#28356427 ColdFusion cross-site scripting vulnerability

Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct a session hijacking. Solution Products Affected ColdFusion MX 7.X For more information, refer to the vendor's website...

4.3CVSS6.3AI score0.02435EPSS

exploitpack•added 2007/02/13 12:0 a.m.•11 views

TaskFreak! 0.5.5 - error.php Cross-Site Scripting

TaskFreak! 0.5.5 - error.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22537/info TaskFreak! is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary scrip...

Exploit DB•added 2007/02/12 12:0 a.m.•36 views

Community Server - 'SearchResults.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22529/info Community Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

exploitpack•added 2007/02/12 12:0 a.m.•9 views

EWay 4 - Default.APSX Cross-Site Scripting

EWay 4 - Default.APSX Cross-Site Scripting source: https://www.securityfocus.com/bid/22528/info eWay is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

exploitpack•added 2007/02/12 12:0 a.m.•16 views

WordPress 1.x2.0.x - Templates.php Cross-Site Scripting

WordPress 1.x2.0.x - Templates.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22534/info WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

exploitpack•added 2007/02/12 12:0 a.m.•9 views

Community Server - SearchResults.aspx Cross-Site Scripting

Community Server - SearchResults.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/22529/info Community Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Exploit DB•added 2007/02/12 12:0 a.m.•37 views

WordPress Core 1.x/2.0.x - 'Templates.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22534/info WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user. This...

Japan Vulnerability Notes•added 2007/02/09 12:0 a.m.•13 views

JVN#84430861 Sage vulnerable to arbitrary script execution

Impact An arbitrary script may be executed on Mozilla Firefox. For example, local files could be accessed. Solution Products Affected Sage 1.3.9 and earlier This vulnerability affects Sage++ as well. As of February 9, 2007, Sage++ is no longer available and is no longer being updated. It is...

Cvelist•added 2007/02/07 11:0 a.m.•19 views

CVE-2007-0807

Cross-site scripting XSS vulnerability in info.php in flashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via a channel title aka room name that is not properly handled by the "who's online" feature...

5.5AI score0.01631EPSS

Exploits0References6

exploitpack•added 2007/02/05 12:0 a.m.•14 views

Adobe ColdFusion 67 - User_Agent Error Page Cross-Site Scripting

Adobe ColdFusion 67 - UserAgent Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/22401/info Adobe ColdFusion is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker could exploit this vulnerability to...

Exploit DB•added 2007/01/31 12:0 a.m.•25 views

OpenEMR 2.8.2 - 'Login_Frame.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22348/info OpenEMR is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by