CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

10439 matches found

exploitpack•added 2008/09/04 12:0 a.m.•8 views

XRms 1.99.2 - file_id Cross-Site Scripting

XRms 1.99.2 - fileid Cross-Site Scripting source: https://www.securityfocus.com/bid/31008/info XRMS CRM is prone to multiple input-validation vulnerabilities, including an unspecified SQL-injection issue, an HTML-injection issue, and multiple cross-site scripting issues. The vulnerabilities occur...

Exploit DB•added 2008/09/02 12:0 a.m.•34 views

UBBCentral UBB.Threads 7.3.1 - 'Forum[]' Array SQL Injection

source: https://www.securityfocus.com/bid/31074/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Exploit DB•added 2008/08/29 12:0 a.m.•22 views

Full PHP Emlak Script - 'landsee.php' SQL Injection

source: https://www.securityfocus.com/bid/30962/info Full PHP Emlak Script is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities...

Exploit DB•added 2008/08/23 12:0 a.m.•20 views

One-News - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/30804/info One-News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple HTML-injection issues. The vulnerabilities occur because the application fails to sufficiently sanitize user-supplied data. Exploiting...

exploitpack•added 2008/08/18 12:0 a.m.•10 views

NewsHOWLER 1.03 - Cookie Data SQL Injection

NewsHOWLER 1.03 - Cookie Data SQL Injection source: https://www.securityfocus.com/bid/30732/info NewsHOWLER is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

exploitpack•added 2008/08/14 12:0 a.m.•10 views

Links Pile - link.php SQL Injection

Links Pile - link.php SQL Injection source: https://www.securityfocus.com/bid/29223/info Links Pile is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

Exploit DB•added 2008/08/13 12:0 a.m.•21 views

PHP Realty - 'dpage.php' SQL Injection

source: https://www.securityfocus.com/bid/30678/info PHP Realty is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

exploitpack•added 2008/08/11 12:0 a.m.•12 views

Kayako SupportSuite 3.x - staffindex.php?customfieldlinkid SQL Injection

Kayako SupportSuite 3.x - staffindex.php?customfieldlinkid SQL Injection source: https://www.securityfocus.com/bid/30642/info Kayako SupportSuite is prone to multiple input-validation vulnerabilities, including an SQL-injection issue, multiple cross-site scripting issues, and an HTML-injection...

Exploit DB•added 2008/08/11 12:0 a.m.•22 views

Kayako SupportSuite 3.x - 'index.php?filter' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30642/info Kayako SupportSuite is prone to multiple input-validation vulnerabilities, including an SQL-injection issue, multiple cross-site scripting issues, and an HTML-injection issue. The vulnerabilities occur because the application fails to...

Exploit DB•added 2008/08/06 12:0 a.m.•22 views

PHP-Nuke Kleinanzeigen Module - 'lid' SQL Injection

source: https://www.securityfocus.com/bid/30577/info The Kleinanzeigen module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

exploitpack•added 2008/08/04 12:0 a.m.•11 views

Keld PHP-MySQL News Script 0.7.1 - login.php SQL Injection

Keld PHP-MySQL News Script 0.7.1 - login.php SQL Injection source: https://www.securityfocus.com/bid/30529/info Keld PHP-MySQL News Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

exploitpack•added 2008/07/30 12:0 a.m.•17 views

DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities

DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/30447/info DEV Web Management System is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include local...

Exploit DB•added 2008/07/24 12:0 a.m.•17 views

AtomPhotoBlog 1.15 - 'atomPhotoBlog.php' SQL Injection

source: https://www.securityfocus.com/bid/30360/info AtomPhotoBlog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Exploit DB•added 2008/07/23 12:0 a.m.•53 views

EMC Centera Universal Access 4.0_4735.p4 - 'Username' SQL Injection

source: https://www.securityfocus.com/bid/30358/info EMC Centera Universal Access CUA is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploi...

exploitpack•added 2008/07/23 12:0 a.m.•10 views

EMC Centera Universal Access 4.0_4735.p4 - Username SQL Injection

EMC Centera Universal Access 4.04735.p4 - Username SQL Injection source: https://www.securityfocus.com/bid/30358/info EMC Centera Universal Access CUA is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacke...

Exploit DB•added 2008/07/22 12:0 a.m.•17 views

Pre Survey Generator - 'default.asp' SQL Injection

source: https://www.securityfocus.com/bid/30349/info Pre Survey Generator is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent...

Exploit DB•added 2008/07/21 12:0 a.m.•29 views

EasyE-Cards 3.10 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/30328/info EasyE-Cards is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

exploitpack•added 2008/07/21 12:0 a.m.•13 views

EasyPublish 3.0 - read Multiple SQL Injections Cross-Site Scripting

EasyPublish 3.0 - read Multiple SQL Injections Cross-Site Scripting source: https://www.securityfocus.com/bid/30307/info EasyPublish is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection and cross-site...

exploitpack•added 2008/07/21 12:0 a.m.•11 views

EasyE-Cards 3.10 - SQL Injection Cross-Site Scripting

EasyE-Cards 3.10 - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/30328/info EasyE-Cards is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple cross-site scripting issues, because it fails to sufficiently sanitize...

securityvulns•added 2008/07/19 12:0 a.m.•39 views

Oracle SQL injection lateral attacks

SQL injection into uncontrolled PL/SQL procedires is possible with e.g. modification of data format with ALTER SESSION...

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by