CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3351 matches found

Exploit DB•added 2011/05/13 12:0 a.m.•22 views

Flash Tag Cloud And MT-Cumulus Plugin - 'tagcloud' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47845/info The Flash Tag Cloud widget and the MT-Cumulus Plugin are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

exploitpack•added 2011/05/10 12:0 a.m.•25 views

poMMo Aardvark PR16.1 - Multiple Cross-Site Scripting Vulnerabilities

poMMo Aardvark PR16.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47786/info poMMo is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

exploitpack•added 2011/05/09 12:0 a.m.•17 views

encoder 0.4.10 - edit.php Cross-Site Scripting

encoder 0.4.10 - edit.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47755/info encoder is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Exploit DB•added 2011/05/09 12:0 a.m.•17 views

Gelsheet 1.02 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47758/info Gelsheet is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context o...

Exploit DB•added 2011/05/09 12:0 a.m.•20 views

encoder 0.4.10 - 'edit.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47755/info encoder is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Exploit DB•added 2011/05/09 12:0 a.m.•15 views

Ampache 3.5.4 - 'login.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47756/info Ampache is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

exploitpack•added 2011/05/05 12:0 a.m.•13 views

PHPDug 2.0 - Multiple Cross-Site Scripting Vulnerabilities

PHPDug 2.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47733/info PHPDug is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

exploitpack•added 2011/05/05 12:0 a.m.•17 views

WordPress Plugin WP Ajax Calendar 1.0 - example.php Cross-Site Scripting

WordPress Plugin WP Ajax Calendar 1.0 - example.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47726/info WP Ajax Calendar is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Exploit DB•added 2011/05/05 12:0 a.m.•26 views

WordPress Plugin WP Ajax Calendar 1.0 - 'example.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47726/info WP Ajax Calendar is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2011/05/05 12:0 a.m.•34 views

PHPDug 2.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/47733/info PHPDug is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2011/05/05 12:0 a.m.•32 views

BMC Remedy Knowledge Management 7.5.00 - Default Account / Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/47728/info BMC Remedy Knowledge Management is prone to a default-account vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attackers can leverage the default account issue to bypa...

Exploit DB•added 2011/05/05 12:0 a.m.•19 views

PHP Directory Listing Script 3.1 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47727/info PHP Directory Listing is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

exploitpack•added 2011/05/03 12:0 a.m.•14 views

Web Auction 0.3.6 - lang Cross-Site Scripting

Web Auction 0.3.6 - lang Cross-Site Scripting source: https://www.securityfocus.com/bid/47682/info Web Auction is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

exploitpack•added 2011/05/03 12:0 a.m.•14 views

Proofpoint Protection Server 5.5.5 - process.cgi Cross-Site Scripting

Proofpoint Protection Server 5.5.5 - process.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/47687/info Proofpoint Protection Server is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issu...

exploitpack•added 2011/05/03 12:0 a.m.•12 views

SelectaPix 1.4.1 - uploadername Cross-Site Scripting

SelectaPix 1.4.1 - uploadername Cross-Site Scripting source: https://www.securityfocus.com/bid/47701/info SelectaPix is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code ...

Exploit DB•added 2011/05/03 12:0 a.m.•21 views

E2 Photo Gallery 0.9 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47697/info E2 Photo Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2011/05/03 12:0 a.m.•18 views

Web Auction 0.3.6 - 'lang' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47682/info Web Auction is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

OpenVAS•added 2011/05/02 12:0 a.m.•14 views

Kusaba X Multiple Cross Site Scripting Vulnerabilities

Kusaba X is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

Exploits0References2

OpenVAS•added 2011/05/02 12:0 a.m.•8 views

phpGraphy 'theme_dir' Parameter Cross Site Scripting Vulnerability

phpGraphy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to...

Exploits0References3

exploitpack•added 2011/05/02 12:0 a.m.•16 views

LANSA aXes Web Terminal TN5250 - axes_default.css Cross-Site Scripting

LANSA aXes Web Terminal TN5250 - axesdefault.css Cross-Site Scripting source: https://www.securityfocus.com/bid/47672/info LANSA aXes Web Terminal TN5250 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by