CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

2123 matches found

exploitpack•added 2010/05/31 12:0 a.m.•10 views

Patient folder (THEME ASP) - SQL Injection

Patient folder THEME ASP - SQL Injection ============================================================ Patient folder THEME ASP Local SQL Injection Vulnerability ============================================================ ----------------------------------- By: SA H4x0r - Emails: [email protected] ...

exploitpack•added 2010/05/11 12:0 a.m.•12 views

e-webtech - page.asp SQL Injection

e-webtech - page.asp SQL Injection ------------------------------------------------------------------------------------------- e-webtech page.asp SQL Injection Vulnerability ------------------------------------------------------------------------------------------- Author: CoBRa21 Mail:...

0day.today•added 2010/05/10 12:0 a.m.•22 views

e-webtech (new.asp) SQL Injection Vulnerability

Exploit for asp platform in category web applications =================================================== e-webtech new.asp?id= SQL Injection Vulnerability =================================================== new.asp?id= SQL Injection Vulnerability Home: http://www.dz4all.com/cc |...

Exploit DB•added 2010/05/10 12:0 a.m.•61 views

e-webtech - 'new.asp?id=' SQL Injection

new.asp?id= SQL Injection Vulnerability Home: http://www.dz4all.com/cc | http://www.h4ckforu.com/vb Risk: high Title: new.asp?id= SQL Injection Vulnerability Dork: "Powerd by www.e-webtech.com" Discovred by: protocol From : algeria Contact : [email protected] Greet to : All Members of...

exploitpack•added 2010/05/10 12:0 a.m.•23 views

e-webtech - new.asp?id SQL Injection

e-webtech - new.asp?id SQL Injection new.asp?id= SQL Injection Vulnerability Home: http://www.dz4all.com/cc | http://www.h4ckforu.com/vb Risk: high Title: new.asp?id= SQL Injection Vulnerability Dork: "Powerd by www.e-webtech.com" Discovred by: protocol From : algeria Contact : [email protected] Greet ...

Packet Storm•added 2010/05/03 12:0 a.m.•40 views

Comersus 8 Shopping Cart Cross Site Request Forgery / SQL Injection

Exploit Title:SQL Injection and CSRF Vulnerability in Comersus 8 Shopping Cart Version: Web Application vendor :http://www.comersus.com/index.html Date: 1 apr,2010 Author:Sid3^effects Code : -------------------------------------------------------------------------------------- Sid3^effects aKa Ha...

exploitpack•added 2010/05/01 12:0 a.m.•23 views

Comersus 8 Shopping Cart - SQL Injection Cross-Site Request Forgery

Comersus 8 Shopping Cart - SQL Injection Cross-Site Request Forgery Exploit Title:SQL Injection and CSRF Vulnerability in Comersus 8 Shopping Cart Version: Web Application vendor :http://www.comersus.com/index.html Date: 1 apr,2010 Author:Sid3^effects Code :...

Packet Storm•added 2010/04/27 12:0 a.m.•30 views

CustomCMS Gaming Portal 4.5.8.2 Cross Site Scripting / Shell Upload

PLz chk it Exploit Title: XSS and shell upload Vulnerability in CustomCMS Gaming Portal V.4.5.8.2 Date: 25-apr-2010 Author: Sid3^effects Software Link: N/a CVE : Code : ------------------------------------------------------------------------------------------------------------------ XSS and shell...

exploitpack•added 2010/04/24 12:0 a.m.•37 views

G5 Scripts Guestbook PHP 1.2.8 - Cross-Site Scripting

G5 Scripts Guestbook PHP 1.2.8 - Cross-Site Scripting :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Guestbook PHP XSS Vulnerability Author = Valentin Hoebel Contact = [email protected]...

Cvelist•added 2010/03/26 8:0 p.m.•21 views

CVE-2009-4747

PHP remote file inclusion vulnerability in public/code/cphtml2xhtmlbasic.php in All In One Control Panel AIOCP 1.4.001 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter, a different vector than CVE-2009-3220...

7.4AI score0.03043EPSS

Exploits1References3

Prion•added 2010/03/25 5:30 p.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Control Panel module 5.x through 5.x-1.5 and 6.x through 6.x-1.2 for Drupal allows remote authenticated users, with "administer blocks" privileges, to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.8AI score0.00868EPSS

Exploits0References5Affected Software1

NVD•added 2010/03/25 5:30 p.m.•11 views

CVE-2010-1108

Cross-site scripting XSS vulnerability in the Control Panel module 5.x through 5.x-1.5 and 6.x through 6.x-1.2 for Drupal allows remote authenticated users, with "administer blocks" privileges, to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.4AI score0.00868EPSS

Exploits0References5

Cvelist•added 2010/03/25 5:0 p.m.•15 views

CVE-2010-1108

Cross-site scripting XSS vulnerability in the Control Panel module 5.x through 5.x-1.5 and 6.x through 6.x-1.2 for Drupal allows remote authenticated users, with "administer blocks" privileges, to inject arbitrary web script or HTML via unspecified vectors...

5.4AI score0.00868EPSS

Exploits0References5

CVE•added 2010/03/25 5:0 p.m.•38 views

CVE-2010-1108

The CVE-2010-1108 issue affects the Drupal Control Panel module in versions 5.x up to 5.x-1.5 and 6.x up to 6.x-1.2, where an XSS vulnerability exists. The root cause is a cross-site scripting flaw that can be exploited by remote authenticated users who possess the "administer blocks" privilege t...

3.5CVSS5.5AI score0.00868EPSS

Exploits0References5Affected Software1

Packet Storm•added 2010/03/23 12:0 a.m.•19 views

Joomla Property Local File Inclusion

--------------------------------------------------------------------------------- Joomla Component Property Local File Inclusion --------------------------------------------------------------------------------- Author : Chip D3 Bi0s Group : LatinHackTeam Email & msn : chipdebiosalt+64gmail.com Da...

exploitpack•added 2010/03/23 12:0 a.m.•21 views

Joomla! Component Property - Local File Inclusion

Joomla! Component Property - Local File Inclusion --------------------------------------------------------------------------------- Joomla Component Property Local File Inclusion --------------------------------------------------------------------------------- Author : Chip D3 Bi0s Group :...

0day.today•added 2010/03/19 12:0 a.m.•28 views

Multi CSRF vulnerability in DirectAdmin (1.34.4)

Exploit for unknown platform in category web applications ================================================ Multi CSRF vulnerability in DirectAdmin 1.34.4 ================================================ ============================================================================= Title : Multi CS...

exploitpack•added 2010/03/19 12:0 a.m.•23 views

DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys

DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys ============================================================================= Title : Multi CSRF vulnerability in DirectAdmin 1.34.4 Date : 20-3-2010 Version : 1.34.4 Author : K053 K053.Dev0te3 AT gmail Tested on : Ubuntu Vendor :...

Exploit DB•added 2010/03/19 12:0 a.m.•22 views

DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys

============================================================================= Title : Multi CSRF vulnerability in DirectAdmin 1.34.4 Date : 20-3-2010 Version : 1.34.4 Author : K053 K053.Dev0te3 AT gmail Tested on : Ubuntu Vendor : http://www.directadmin.com/ Download :...

0day.today•added 2010/03/18 12:0 a.m.•16 views

NinkoBB 1.3RC4 Change Admin and Add New Admin CSRF Vulnerability

Exploit for unknown platform in category web applications ================================================================ NinkoBB 1.3RC4 Change Admin and Add New Admin CSRF Vulnerability ================================================================ change admin user,passwd & add new admin use...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by