CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4774 matches found

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Captaris Infinite WebMail 3.61.5 HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6411/info An HTML injection vulnerability has been discovered in Captaris Infinite WebMail. Due to insufficient sanitization of HTML content, it is possible for an attacker to embed malicious script code into HTML email...

seebug.org•added 2014/07/01 12:0 a.m.•31 views

Five Star Review Script 0 index2.php sort Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML a...

seebug.org•added 2014/07/01 12:0 a.m.•12 views

KwsPHP 1.0 ConcoursPhoto Module - 'VIEW' Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28612/info KwsPHP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

seebug.org•added 2014/07/01 12:0 a.m.•16 views

ModernGigabyte ModernBill 4.3 Aid Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13089/info ModernBill is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'aid' parameter. This may facilitate the theft o...

seebug.org•added 2014/07/01 12:0 a.m.•16 views

FishCart 3.1 upstracking.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13499/info FishCart is prone to multiple cross-site scripting and SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit of the SQL-injection issues coul...

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Jax PHP Scripts 1.0/1.34/2.14/3.31 petitionbook Script User IP Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/14482/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of the...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

SquirrelMail 1.x Email Header HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10439/info SquirrelMail is reported to be prone to an email header HTML injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied email header strings. An attacker can...

seebug.org•added 2014/07/01 12:0 a.m.•9 views

PhotoPost PHP 3.3.1 'cat' Parameter Cross Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/35996/info PhotoPost PHP is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

seebug.org•added 2014/07/01 12:0 a.m.•14 views

GNU Mailman 2.1 'email' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6677/info A vulnerability has been discovered in GNU Mailman. It has been reported that Mailman is prone to cross site scripting attacks. This is due to insufficient santization of URI parameters. As a result, attackers m...

seebug.org•added 2014/07/01 12:0 a.m.•54 views

PHPDug 2.0.0 - Multiple Vulnerabilities

No description provided by source. Vulnerability ID: HTB22971 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpdug.html Product: PHPDug Vendor: Kubelabs.com http://www.kubelabs.com/ Vulnerable Version: 2.0.0 and probably prior versions Vendor Notification: 21 April 2011 Vulnerability Type:...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Bitweaver 1.1.1 view_post.php post_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

seebug.org•added 2014/07/01 12:0 a.m.•106 views

MetaCart E-Shop V-8 IntProdID Parameter Remote SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13376/info An SQL injection vulnerability affects MetaCart e-Shop V-8. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries. An attacker may explo...

seebug.org•added 2014/07/01 12:0 a.m.•28 views

common solutions csphonebook 1.02 'index.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30485/info The 'csphonebook' program from common solutions is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...

seebug.org•added 2014/07/01 12:0 a.m.•22 views

TextfileBB 1.0 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/17029/info The 'textfileBB' application is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage an...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

DotClear 1.2.x /ecrire/trackback.php post_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/23411/info DotClear is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...

seebug.org•added 2014/07/01 12:0 a.m.•69 views

Grandora Rialto 1.6 /admin/default.asp Multiple Field SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21191/info Grandora Rialto is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting this issu...

seebug.org•added 2014/07/01 12:0 a.m.•8 views

ThWboard 3.0 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17627/info ThWboard is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scrip...

seebug.org•added 2014/07/01 12:0 a.m.•8 views

CityPost PHP Image Editor M4 URI Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13260/info CityPost Image Cropper/Resizer is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'image-editor-52.php' script...

seebug.org•added 2014/07/01 12:0 a.m.•14 views

YaPig 0.95 b view.php img_size Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15092/info Yapig is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...

seebug.org•added 2014/07/01 12:0 a.m.•13 views

PostNuke 0.6x/0.7x NS-Languages Module language Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16752/info PostNuke is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation could allow an attacker to...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by