CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7602 matches found

Exploit DB•added 2006/03/06 12:0 a.m.•22 views

RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16970/info RunCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated HTML content. An attacker may leverage this issue t...

Exploit DB•added 2006/03/06 12:0 a.m.•28 views

DVGuestbook 1.0/1.2.2 - 'dv_gbook.php?f' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16968/info DVGuestbook is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed i...

exploitpack•added 2006/03/06 12:0 a.m.•17 views

Qto File Manager 1.0 - index.php Cross-Site Scripting

Qto File Manager 1.0 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/18510/info Qto file manager is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

exploitpack•added 2006/03/06 12:0 a.m.•11 views

HitHost 1.0 - viewuser.php?hits Cross-Site Scripting

HitHost 1.0 - viewuser.php?hits Cross-Site Scripting source: https://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thes...

Exploit DB•added 2006/03/06 12:0 a.m.•34 views

HitHost 1.0 - 'viewuser.php?hits' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in th...

exploitpack•added 2006/03/04 12:0 a.m.•13 views

CutePHP CuteNews 1.4.1 - index.php Cross-Site Scripting

CutePHP CuteNews 1.4.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/16961/info CuteNews is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically...

Exploit DB•added 2006/03/04 12:0 a.m.•30 views

VBZooM Forum 1.11 - 'comment.php?UserID' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16956/info VBZooM Forum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...

exploitpack•added 2006/02/28 12:0 a.m.•12 views

QwikiWiki 1.4 - index.php Cross-Site Scripting

QwikiWiki 1.4 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/16874/info QwikiWiki is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Exploit DB•added 2006/02/22 12:0 a.m.•16 views

myPHPNuke 1.8.8 - 'download.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16815/info MyPHPNuke is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

Packet Storm•added 2006/02/17 12:0 a.m.•23 views

EV0080.txt

New eVuln Advisory: M. Blom HTML::BBCode perl module XSS Vulnerabilities http://evuln.com/vulns/80/summary.html --------------------Summary---------------- eVuln ID: EV0080 Software: M. Blom HTML::BBCode Sowtware's Web Site: http://menno.b10m.net/perl/ Versions: 1.04 1.03 and earlier Critical...

Tenable Nessus•added 2006/02/15 12:0 a.m.•10 views

WordPress < 2.0.1 Arbitrary Script Injection

Binary data 3435.prm...

2.6CVSS7.3AI score0.00831EPSS

Exploits1References2

CVE•added 2006/02/13 11:0 a.m.•53 views

CVE-2006-0658

Vulnerability family: incomplete blacklist in FCKeditor. Affected: FCKeditor 2.0/2.2 as used in RunCMS and related products. Issue: remote attackers can upload and execute arbitrary script files by using extensions not listed in Config[DeniedExtensions][File] (e.g., .php.txt) due to inadequate ex...

5CVSS7AI score0.05676EPSS

Exploits1References5Affected Software1

exploitpack•added 2006/02/13 12:0 a.m.•13 views

Gastebuch 1.3.2 - Cross-Site Scripting

Gastebuch 1.3.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/16615/info Gastebuch is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated HTML...

OSV•added 2006/02/02 11:2 a.m.•7 views

CVE-2006-0518

Cross-site scripting XSS vulnerability in index.php3 in SPIP 1.8.2-e and earlier and 1.9 Alpha 2 5539 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

Exploits0References6

Exploit DB•added 2006/02/02 12:0 a.m.•19 views

CyberShop Ultimate E-Commerce - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16473/info CyberShop Ultimate E-commerce is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issue to have arbitrary scrip...

exploitpack•added 2006/02/01 12:0 a.m.•38 views

SPIP 1.81.9 - index.php3 Cross-Site Scripting

SPIP 1.81.9 - index.php3 Cross-Site Scripting source: https://www.securityfocus.com/bid/16461/info SPIP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitra...

exploitpack•added 2006/01/30 12:0 a.m.•11 views

Ashwebstudio Ashnews 0.83 - Cross-Site Scripting

Ashwebstudio Ashnews 0.83 - Cross-Site Scripting source: https://www.securityfocus.com/bid/16426/info Ashnews is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Packet Storm•added 2006/01/26 12:0 a.m.•25 views

CheesyBlog-1.0.txt

New eVuln Advisory: CheesyBlog XSS Vulnerability http://evuln.com/vulns/49/summary.html --------------------Summary---------------- Software: CheesyBlog Sowtware's Web Site: http://cheesepizza.net/ Versions: 1.0 Critical Level: Harmless Type: Cross-Site Scripting Class: Remote Status: Unpatched...

securityvulns•added 2006/01/20 12:0 a.m.•31 views

[Full-disclosure] RockLiffe MailSite wconsole.dll Denial of Service/Script Injection Vulnerability

OS2A RockLiffe MailSite wconsole.dll Denial of Service/Script Injection Vulnerability OS2A ID: OS2A1004 Status 01/06/2006 Issue Discovered 01/06/2006 Reported to the vendor 01/19/2006 Patch Released 01/20/2006 Advisory Released Class: Denial of Service / Script Injection Severity: CRITICAL...

securityvulns•added 2006/01/19 12:0 a.m.•36 views

[eVuln] aoblogger Multiple Vulnerabilities

New eVuln Advisory: aoblogger Multiple Vulnerabilities http://evuln.com/vulns/37/summary/bt/ --------------------Summary---------------- Software: aoblogger Sowtware's Web Site: http://mikeheltonisawesome.com/ Versions: 2.3 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by