CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

Eleanor CMS - Open Redirect

Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERYSTRING. id: CVE-2014-9180 info: name: Eleanor CMS - Open Redirect author: Shankar Acharya severity: medium description: | Open...

5CVSS5.7AI score0.0844EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-10433

Malware in sbrugna...

4.8CVSS5.1AI score0.00235EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 5:20 a.m.•2 views

CVE-2014-9180

Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERYSTRING...

5CVSS6.8AI score0.0844EPSS

Exploits1References1

NVD•added 2018/10/29 12:29 p.m.•8 views

CVE-2018-18717

An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists via the ajax.php?direct=admin&file=autocomplete&query=XSS URI...

4.8CVSS4.9AI score0.00235EPSS

Exploits1References1

OSV•added 2018/10/29 12:29 p.m.•1 views

CVE-2018-18717

An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists via the ajax.php?direct=admin&file=autocomplete&query=XSS URI...

4.8CVSS5.8AI score0.00235EPSS

Exploits1References1

Prion•added 2018/10/29 12:29 p.m.•11 views

Cross site scripting

An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists via the ajax.php?direct=admin&file=autocomplete&query=XSS URI...

3.5CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

CVE•added 2018/10/28 12:0 a.m.•33 views

CVE-2018-18717

CVE-2018-18717 affects Eleanor CMS up to 2015-03-19. It is an XSS vulnerability exploitable through the AJAX endpoint ajax.php?direct=admin&file=autocomplete&query=[XSS] where the attacker-controlled query is reflected in the response. NVD lists CVSSv2 base 3.5 (LOW) and CVSSv3 base 4.8 (MEDIUM)....

4.8CVSS4.9AI score0.00235EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/10/28 12:0 a.m.•9 views

CVE-2018-18717

An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists via the ajax.php?direct=admin&file=autocomplete&query=XSS URI...

5AI score0.00235EPSS

Exploits1References1

NVD•added 2014/12/02 4:59 p.m.•8 views

CVE-2014-9180

Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERYSTRING...

5CVSS6.6AI score0.0844EPSS

Exploits1References1

Prion•added 2014/12/02 4:59 p.m.•10 views

Open redirect

Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERYSTRING...

5CVSS7.1AI score0.0844EPSS

Exploits1References1

Cvelist•added 2014/12/02 4:0 p.m.•13 views

CVE-2014-9180

Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERYSTRING...

6.6AI score0.0844EPSS

Exploits1References1

CVE•added 2014/12/02 4:0 p.m.•62 views

CVE-2014-9180

The CVE-2014-9180 issue affects Eleanor CMS, specifically the go.php open redirect functionality. The vulnerability allows an attacker to redirect users to arbitrary sites by supplying a URL in the QUERY_STRING, enabling phishing and potential credential theft as described in the Nuclei template ...

5CVSS6.9AI score0.0844EPSS

Exploits1References1Affected Software1

Packet Storm•added 2014/11/12 12:0 a.m.•26 views

Eleanor CMS Open Redirect

URL Open Redirect on Eleanor CMS Risk: Low CWE number: CWE-601 Vendor: eleanor-cms.ru Version: All Date: 11/11/2014 Author: Felipe " Renzi " Gabriel Contact: [email protected] Tested on Linux Ubuntu 14.04 ; Mozilla Firefox 33.0 Vulnerable File: go.php Exploit: +...

7.4AI score

Exploits0

Packet Storm•added 2011/04/05 12:0 a.m.•25 views

Eleanor CMS rc5 Cross Site Scripting / SQL Injection

================================= Vulnerability ID: HTB22912 Reference: http://www.htbridge.ch/advisory/multiplesqlinjectionsineleanorcms.html Product: Eleanor CMS Vendor: Eleanor CMS http://eleanor-cms.ru/ Vulnerable Version: rc5 Vendor Notification: 22 March 2011 Vulnerability Type: SQL Injecti...

0.4AI score

Exploits0

Exploit DB•added 2011/04/05 12:0 a.m.•20 views

Eleanor CMS - Cross-Site Scripting / Multiple SQL Injections

source: https://www.securityfocus.com/bid/47164/info Eleanor CMS is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script co...

7.4AI score

Exploits0

exploitpack•added 2011/04/05 12:0 a.m.•15 views

Eleanor CMS - Cross-Site Scripting Multiple SQL Injections

Eleanor CMS - Cross-Site Scripting Multiple SQL Injections source: https://www.securityfocus.com/bid/47164/info Eleanor CMS is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...

0.3AI score

Exploits0

securityvulns•added 2011/04/05 12:0 a.m.•107 views

HTB22912: Multiple SQL Injections in Eleanor CMS

Vulnerability ID: HTB22912 Reference: http://www.htbridge.ch/advisory/multiplesqlinjectionsineleanorcms.html Product: Eleanor CMS Vendor: Eleanor CMS http://eleanor-cms.ru/ Vulnerable Version: rc5 Vendor Notification: 22 March 2011 Vulnerability Type: SQL Injection Status: Fixed by Vendor Risk...

1AI score

Exploits0

securityvulns•added 2011/04/05 12:0 a.m.•99 views

HTB22911: XSS in Eleanor CMS

Vulnerability ID: HTB22911 Reference: http://www.htbridge.ch/advisory/xssineleanorcms.html Product: Eleanor CMS Vendor: Eleanor CMS http://eleanor-cms.ru/ Vulnerable Version: rc5 Vendor Notification: 22 March 2011 Vulnerability Type: XSS Cross Site Scripting Status: Fixed by Vendor Risk level:...

0.2AI score

Exploits0

htbridge•added 2011/03/22 12:0 a.m.•21 views

Multiple Vulnerabilities in Eleanor CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in Eleanor CMS which could be exploited to perform cross-site scripting and SQL injection attacks. 1 Cross-site scripting XSS vulnerability in Eleanor CMS The vulnerability exists due to input sanitation error in the...

7.5CVSS7.3AI score

Exploits0Affected Software1

0day.today•added 2010/03/10 12:0 a.m.•14 views

Eleanor CMS Rc5.1 Cross Site Scripting Vulnerability

Exploit for unknown platform in category web applications ==================================================== Eleanor CMS Rc5.1 Cross Site Scripting Vulnerability ==================================================== Topic : Eleanor Rc5.1 Bug tType : Cross Site Scripting Credit : ItSecTeam Remote...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by