CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2125 matches found

0day.today•added 2014/06/27 12:0 a.m.•24 views

Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities

Mailspect Control Panel version 4.0.5 suffers from remote code execution, arbitrary file read, and cross site scripting vulnerabilities. Document Title: ============ Mailspect Control Panel version 4.0.5 Multiple Vulnerabilities Release Date: =========== June 21, 2014 Product & Service...

7AI score

Exploits0

OpenVAS•added 2014/06/26 12:0 a.m.•29 views

Mailspect Control Panel <= 4.0.5 Multiple Vulnerabilities - Active Check

Mailspect Control Panel is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

7.2AI score

Exploits0References1

Packet Storm•added 2014/06/26 12:0 a.m.•28 views

Mailspect Control Panel 4.0.5 Code Execution / File Read / XSS

Document Title: ============ Mailspect Control Panel version 4.0.5 Multiple Vulnerabilities Release Date: =========== June 21, 2014 Product & Service Introduction: ======================== Mailspect is the email security and archiving brand of RAE Internet Inc., Tarrytown, New York. The Mailspect...

7.4AI score

Exploits0

Tenable Nessus•added 2014/06/13 12:0 a.m.•46 views

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0777-1)

java-160-openjdk was updated to 1.12.5 bnc817157 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework...

10CVSS7.1AI score0.86963EPSS

Exploits15References21

ThreatPost•added 2014/06/10 9:52 a.m.•17 views

New Pandemiya Banking Trojan Written From Scratch

Brand new, written-from-scratch malware is a relatively rare undertaking on the underground. Aside from some private endeavors, source code is available for a number of popular Trojans, including Zeus, Citadel and Carberp, making it easy for attackers to simply grab one off the shelf and get...

0.1AI score

Exploits0References5

securityvulns•added 2014/05/05 12:0 a.m.•62 views

[CVE-2014-2035] XSS in InterWorx Web Control Panel <= 5.0.12

============================================== Product: InterWorx Web Control Panel Vendor: InterWorx LLC Tested Version: 5.0.12 build 569 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2014-2035 Risk Level: Medium CVSSv2 Base Score: 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N Solution...

4.3CVSS0.1AI score0.01158EPSS

Exploits3

securityvulns•added 2014/05/05 12:0 a.m.•137 views

[CVE-2014-2531] SQL injection in InterWorx Web Control Panel <= 5.0.13

================================================= Title: SQL injection in InterWorx Control Panel Product: InterWorx Web Control Panel Vendor: InterWorx LLC Tested Version: 5.0.13 build 574 Vulnerability Type: SQL Injection CWE-89 CVE Reference: CVE-2014-2531 Solution Status: Fixed in Version...

6.5CVSS7.5AI score0.01123EPSS

Exploits6

n0where•added 2014/04/04 1:7 a.m.•20261 views

Hacking Maytag: Coin-Operated Laudromat Machines

Most Maytag commercial washers and dryers out there use a common controller platform. It dates back to the 80s and is still produced. So almost all Maytag with digital control panel is exploitable in this way. The identifying features are green vacuum florescent display with a four-digit numerica...

0.6AI score

Exploits0

Exploit DB•added 2014/04/02 12:0 a.m.•27 views

Kloxo 6.1.18 Stable - Cross-Site Request Forgery

Exploit Title :Kloxo 6.1.18 Stable CSRF Vulnerability Vendor Homepage :http://lxcenter.org/software/kloxo Version :6.1.18 Exploit Author :Necmettin COSKUN =@babayarisi Blog :http://www.ncoskun.com http://www.grisapka.org Discovery date :03/12/2014 CVE :N/A Kloxo formerly known as Lxadmin is a fre...

7.4AI score

Exploits0

0day.today•added 2014/03/26 12:0 a.m.•65 views

InterWorx Web Control Panel Cross Site Scripting Vulnerability

InterWorx Web Control Panel version 5.0.12 build 569 suffers from a cross site scripting vulnerability. ============================================== Product: InterWorx Web Control Panel Vendor: InterWorx LLC Tested Version: 5.0.12 build 569 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...

4.3CVSS6.2AI score0.01158EPSS

Exploits3

exploitpack•added 2014/03/26 12:0 a.m.•17 views

InterWorx Control Panel 5.0.13 build 574 - xhr.php?i SQL Injection

InterWorx Control Panel 5.0.13 build 574 - xhr.php?i SQL Injection ================================================= Title: SQL injection in InterWorx Control Panel Product: InterWorx Web Control Panel Vendor: InterWorx LLC Tested Version: 5.0.13 build 574 Vulnerability Type: SQL Injection CWE-89...

6.5CVSS0.5AI score0.01123EPSS

Exploits6

0day.today•added 2014/03/26 12:0 a.m.•50 views

InterWorx 5.0.13 Build 574 SQL Injection Vulnerability

InterWorx Web Control Panel version 5.0.13 build 574 suffers from a remote SQL injection vulnerability. ================================================= Title: SQL injection in InterWorx Control Panel Product: InterWorx Web Control Panel Vendor: InterWorx LLC Tested Version: 5.0.13 build 574...

6.5CVSS0.1AI score0.01123EPSS

Exploits6

Exploit DB•added 2014/03/26 12:0 a.m.•34 views

InterWorx Control Panel 5.0.13 build 574 - 'xhr.php?i' SQL Injection

6.5CVSS6.5AI score0.01123EPSS

Exploits6

Packet Storm•added 2014/03/25 12:0 a.m.•40 views

InterWorx 5.0.13 Build 574 SQL Injection

6.5CVSS6.5AI score0.01123EPSS

Exploits6

0day.today•added 2014/03/12 12:0 a.m.•25 views

GNUPanel 0.3.5_R4 - Multiple Vulnerabilities

GNUpanel version 0.3.5R4 suffers from cross site request forgery and cross site scripting vulnerabilities. Exploit Title :GNUpanel 0.3.5R4 - Multiple Vulnerabilities Vendor Homepage :http://wp.geeklab.com.ar/gl-en/gnupanel/ GNUPanel Version :0.3.5R4 Server :Centos 6.4 Exploit Author :Necmettin...

6.9AI score

Exploits0

exploitpack•added 2014/03/12 12:0 a.m.•30 views

GNUPanel 0.3.5_R4 - Multiple Vulnerabilities

GNUPanel 0.3.5R4 - Multiple Vulnerabilities Exploit Title :GNUpanel 0.3.5R4 - Multiple Vulnerabilities Vendor Homepage :http://wp.geeklab.com.ar/gl-en/gnupanel/ GNUPanel Version :0.3.5R4 Server :Centos 6.4 Exploit Author :Necmettin COSKUN =@babayarisi Blog :http://www.ncoskun.com...

0.4AI score

Exploits0

NVD•added 2014/02/27 3:55 p.m.•20 views

CVE-2014-2035

Cross-site scripting XSS vulnerability in xhr.php in InterWorx Web Control Panel aka InterWorx Hosting Control Panel and InterWorx-CP before 5.0.13 build 574 allows remote attackers to inject arbitrary web script or HTML via the i parameter...

4.3CVSS5.6AI score0.01158EPSS

Exploits3References3

Prion•added 2014/02/27 3:55 p.m.•13 views

Cross site scripting

4.3CVSS6.1AI score0.01158EPSS

Exploits3References3Affected Software1

ATTACKERKB•added 2014/02/27 3:55 p.m.•2 views

CVE-2014-2035

4.3CVSS5.7AI score0.01158EPSS

Exploits3References4

CVE•added 2014/02/27 3:0 p.m.•63 views

CVE-2014-1223

Telligent Evolution (controlpanel/loading.aspx) is affected by an XSS vulnerability due to improper filtering of the msg parameter. Versions affected include before 6.1.19.36103, 7.x before 7.1.12.36162, 7.5.x, and 7.6.x before 7.6.7.36651. An attacker can inject arbitrary script/HTML via the msg...

4.3CVSS5.8AI score0.0152EPSS

Exploits3References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by