CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7612 matches found

exploitpack•added 2006/11/06 12:0 a.m.•9 views

AIOCP 1.3.x - cp_forum_view.php SQL Injection

AIOCP 1.3.x - cpforumview.php SQL Injection source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker...

exploitpack•added 2006/11/06 12:0 a.m.•14 views

AIOCP 1.3.x - cp_show_ec_products.php SQL Injection

AIOCP 1.3.x - cpshowecproducts.php SQL Injection source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an...

Exploit DB•added 2006/11/06 12:0 a.m.•21 views

AIOCP 1.3.x - 'cp_news.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•24 views

AIOCP 1.3.x - 'cp_dpage.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•30 views

AIOCP 1.3.x - 'cp_show_ec_products.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•19 views

AIOCP 1.3.x - 'cp_show_ec_products.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•19 views

AIOCP 1.3.x - 'cp_users_online.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•20 views

AIOCP 1.3.x - 'cp_edit_user.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•19 views

AIOCP 1.3.x - 'cp_forum_view.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•14 views

AIOCP 1.3.x - 'cp_codice_fiscale.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•23 views

AIOCP 1.3.x - 'cp_show_page_help.php' Full Path Disclosure

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

exploitpack•added 2006/11/04 12:0 a.m.•9 views

IF-CMS - index.php Cross-Site Scripting

IF-CMS - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20909/info IF-CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in...

exploitpack•added 2006/11/03 12:0 a.m.•9 views

ac4p Mobile - index.php Multiple Cross-Site Scripting Vulnerabilities

ac4p Mobile - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/20895/info Mobile is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues...

exploitpack•added 2006/10/30 12:0 a.m.•9 views

Exhibit Engine 1.22 - fstyles.php?toroot Remote File Inclusion

Exhibit Engine 1.22 - fstyles.php?toroot Remote File Inclusion source: https://www.securityfocus.com/bid/20793/info Exhibit Engine Software is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allo...

exploitpack•added 2006/10/27 12:0 a.m.•15 views

ASPPlayGround.NET Forum 2.4.5 - Calendar.asp Cross-Site Scripting

ASPPlayGround.NET Forum 2.4.5 - Calendar.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/20335/info ASPPlayground.NET Forum Advanced Edition is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage...

Exploit DB•added 2006/10/24 12:0 a.m.•24 views

Simpnews 2.x - 'pwlost.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20714/info SimpNews is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

Exploit DB•added 2006/10/17 12:0 a.m.•23 views

Webgenius Goop Gallery 2.0 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20554/info GOOP Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting us...

exploitpack•added 2006/10/14 12:0 a.m.•9 views

H-Sphere WebShell 2.x - login.php Cross-Site Scripting

H-Sphere WebShell 2.x - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20532/info H-Sphere WebShell is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script co...

exploitpack•added 2006/10/04 12:0 a.m.•11 views

osCommerce 2.2 - adminreviews.php?page Cross-Site Scripting

osCommerce 2.2 - adminreviews.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user i...

Exploit DB•added 2006/10/04 12:0 a.m.•19 views

osCommerce 2.2 - '/admin/reviews.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attack...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by