Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1348 matches found

exploitpack
exploitpackadded 2004/03/21 12:0 a.m.19 views

Invision Power Top Site List 1.1 RC 2 - SQL Injection

Invision Power Top Site List 1.1 RC 2 - SQL Injection Invision Power Top Site List SQL Injection Vendor: Invision Power Services Product: Invision Power Top Site List Version: = 1.1 RC 2 Website: http://www.invisiontsl.com/ BID: 9945 Description: Invision Power Top Site List is a flexible site...

8.6AI score
Exploits0
exploitpack
exploitpackadded 2004/02/09 12:0 a.m.17 views

PHP-Nuke 6.x7.x - Public Message SQL Injection

PHP-Nuke 6.x7.x - Public Message SQL Injection source: https://www.securityfocus.com/bid/9615/info It has been reported that the 'public message' feature of PHP-Nuke is vulnerable to an SQL injection vulnerability. The issue is due to improper sanitization of user-defined parameters supplied to t...

8.6AI score
Exploits0
exploitpack
exploitpackadded 2004/01/19 12:0 a.m.10 views

YABB SE 1.x - SSI.php ID_MEMBER SQL Injection

YABB SE 1.x - SSI.php IDMEMBER SQL Injection source: https://www.securityfocus.com/bid/9449/info A problem with YaBB SE could make it possible for a remote user launch SQL injection attacks. It has been reported that a problem exists in the SSI.php script distributed as part of YaBB SE. Due to...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2003/10/08 12:0 a.m.31 views

PHP-Nuke 6.6 - 'admin.php' SQL Injection

source: https://www.securityfocus.com/bid/8798/info It has been reported that PHP-Nuke is prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The issue is said to occur within the admin.php file, specifically when...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2003/04/30 12:0 a.m.15 views

Microsoft BizTalk Server 2000/2002 DTA - 'RawCustomSearchField.asp' SQL Injection

source: https://www.securityfocus.com/bid/7470/info A vulnerability has been reported for BizTalk Server which may make it possible for remote users to modify database query logic. The vulnerability exists in some of the pages used by the DTA interface. This vulnerability may be the result of...

7.4AI score
Exploits0
CERT
CERTadded 2001/12/21 12:0 a.m.35 views

Buffer overflows in Microsoft SQL Server 7.0 and SQL Server 2000

Overview There is a buffer overflow in Microsoft SQL Server 2000 and SQL Server 7.0 which could allow an intruder to execute arbitrary code on vulnerable systems. Description Microsoft Windows SQL Server 2000 and SQL Server 7.0 contain a buffer overflow in functions associated with text messages...

7.5CVSS8AI score0.10361EPSS
Exploits0References7
CVE
CVEadded 2000/05/18 4:0 a.m.55 views

CVE-2000-0325

The CVE-2000-0325 entry concerns the Microsoft Jet database engine, where an attacker can execute commands through a database query via the VBA Shell vulnerability. The available sources (NVD/CVE listing) describe command execution as the impact, but do not provide details on affected product ver...

7.2CVSS6.8AI score0.0705EPSS
Exploits1References3Affected Software1
NVD
NVDadded 1999/08/20 4:0 a.m.17 views

CVE-2000-0325

The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability...

7.2CVSS6.8AI score0.0705EPSS
Exploits1References3
Rows per page
Query Builder