CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7701 matches found

0day.today•added 2009/01/22 12:0 a.m.•18 views

OwnRS Blog 1.2 (autor.php) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ====================================================== OwnRS Blog 1.2 autor.php SQL Injection Vulnerability ====================================================== OwnRS CMS autor.php SQL Injection Vulnerability Author: nuclear download:...

exploitpack•added 2009/01/22 12:0 a.m.•13 views

OwnRS Blog 1.2 - autor.php SQL Injection

OwnRS Blog 1.2 - autor.php SQL Injection OwnRS CMS autor.php SQL Injection Vulnerability Author: nuclear download: http://sourceforge.net/project/showfiles.php?groupid=230742 vuln: http://localhost/path/autor.php?id=' union select 1,2,3,4,5,@@version,7,8,9 ' required: magicquotesgpc == off; greet...

Packet Storm•added 2009/01/21 12:0 a.m.•17 views

Efendy Blog 3.2 Database Disclosure

--------------------------------------------------------- Portal Name: Efendy Blog version : 3.2 Download : http://aspindir.com/Goster/4989 Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD: http://site.com/Path/db/blog.m...

Packet Storm•added 2009/01/21 12:0 a.m.•25 views

Ninja Blog 4.8 Information Disclosure

Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/index.php?s=ad&id=6 ---- Due to insufficient validation of client-side data, we can alter the path of files to be read to ...

Packet Storm•added 2009/01/21 12:0 a.m.•15 views

T-Blog 1.0 Database Disclosure

--------------------------------------------------------- Portal Name: T-blog Version : 1.0 Download : http://aspindir.com/Goster/5473 Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD: http://site.com/Path/blog.mdb...

Packet Storm•added 2009/01/21 12:0 a.m.•13 views

F-Blog Database Disclosure

--------------------------------------------------------- Portal Name: F Blog Download : http://aspindir.com/Goster/5709 Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD: http://site.com/Path/db/blog.mdb...

Packet Storm•added 2009/01/21 12:0 a.m.•13 views

WMbilisim Blog Database Disclosure

--------------------------------------------------------- Portal Name: WMbilisim Blog Download : http://aspindir.com/Goster/5505 Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD: http://site.com/Path/db/wmbilisim.mdb...

Packet Storm•added 2009/01/21 12:0 a.m.•11 views

Kms Blog Database Disclosure

--------------------------------------------------------- Portal Name: Kms Blog Download : http://aspindir.com/Goster/5733 Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD: http://site.com/Path/kemsay/kms.mdb...

Packet Storm•added 2009/01/21 12:0 a.m.•20 views

Ninja Blog 4.8 XSRF / XSS

Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at https://www.push55.co.uk/index.php?s=ad&id=7 ---- Due to insufficient validation of client-side data, we can inject script directly into the...

Packet Storm•added 2009/01/21 12:0 a.m.•17 views

Onur Blog 2.0 Database Disclosure

--------------------------------------------------------- Portal Name: Onur Blog Version : 2.0 Download : http://aspindir.com/Goster/5483 Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD: http://site.com/Path/db/db.mdb...

0day.today•added 2009/01/19 12:0 a.m.•19 views

Ninja Blog 4.8 Remote Information Disclosure Vulnerability

Exploit for unknown platform in category web applications ========================================================== Ninja Blog 4.8 Remote Information Disclosure Vulnerability ========================================================== Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May...

0day.today•added 2009/01/19 12:0 a.m.•10 views

Ninja Blog 4.8 (CSRF/HTML Injection) Vulnerability

Exploit for unknown platform in category web applications ================================================== Ninja Blog 4.8 CSRF/HTML Injection Vulnerability ================================================== Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier...

seebug.org•added 2009/01/19 12:0 a.m.•10 views

Ninja Blog 4.8 (CSRF/HTML Injection) Vulnerability

No description provided by source. Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at https://www.push55.co.uk/index.php?s=ad&id=7 ---- Due to insufficient validation of client-side data, we can...

Exploit DB•added 2009/01/19 12:0 a.m.•33 views

Ninja Blog 4.8 - Remote Information Disclosure

Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/index.php?s=ad&id=6 ---- Due to insufficient validation of client-side data, we can alter the path of files to be read to ...

exploitpack•added 2009/01/19 12:0 a.m.•13 views

Ninja Blog 4.8 - Cross-Site Request ForgeryHTML Injection

Ninja Blog 4.8 - Cross-Site Request ForgeryHTML Injection Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at https://www.push55.co.uk/index.php?s=ad&id=7 ---- Due to insufficient validation of...

Exploit DB•added 2009/01/19 12:0 a.m.•35 views

Ninja Blog 4.8 - Cross-Site Request Forgery/HTML Injection

Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at https://www.push55.co.uk/index.php?s=ad&id=7 ---- Due to insufficient validation of client-side data, we can inject script directly into the...

exploitpack•added 2009/01/16 12:0 a.m.•27 views

Blog Manager - categoryId Cross-Site Scripting

Blog Manager - categoryId Cross-Site Scripting source: https://www.securityfocus.com/bid/33314/info DMXReady Blog Manager is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting thes...

securityvulns•added 2009/01/16 12:0 a.m.•95 views

DMXReady Blog Manager (SQL/XSS)

--------------------------------------------------------- Portal Name: DMXReady Blog Manager SQL/XSS Vendor : http://www.galaxyscripts.com Author : PouyaServer , [email protected] Aria-Security.Net Vulnerability : SQL/XSS --------------------------------------------------------- SQL:...

Exploit DB•added 2009/01/16 12:0 a.m.•48 views

Blog Manager - 'ItemID' SQL Injection

source: https://www.securityfocus.com/bid/33314/info DMXReady Blog Manager is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal...

securityvulns•added 2009/01/16 12:0 a.m.•96 views

[waraxe-2009-SA#070] - Multiple Vulnerabilities in MKPortal <= 1.2.1

waraxe-2009-SA070 - Multiple Vulnerabilities in MKPortal = 1.2.1 ============================================================================== Author: Janek Vind "waraxe" Date: 15. January 2009 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-70.html Description of vulnerable software...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by