CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6680 matches found

Openbugbounty•added 2017/04/12 1:40 p.m.•7 views

arabiyet.com XSS vulnerability

Vulnerable URL: http://arabiyet.com/?s="'--!confirmOPENBUGBOUNTY...

6.9AI score

Exploits0

Microsoft CVE•added 2017/04/11 7:0 a.m.•913 views

Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows

A remote code execution vulnerability exists in the way that Microsoft Office and WordPad parse specially crafted files. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or...

9.3CVSS3.7AI score0.99933EPSS

Exploits29

Tenable Nessus•added 2017/04/11 12:0 a.m.•481 views

phpMyAdmin 4.0.x < 4.0.10.19 / 4.4.x < 4.4.15.10 / 4.6.x < 4.6.6 Multiple Vulnerabilities (PMASA-2017-1 - PMASA-2017-7)

According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is 4.0.x prior to 4.0.10.19, 4.4.x prior to 4.4.15.10, or 4.6.x prior to 4.6.6. It is, therefore, affected by the following vulnerabilities : - An open redirect vulnerability exists due to a...

9.8CVSS7.9AI score0.06711EPSS

Exploits1References9

Openbugbounty•added 2017/04/09 5:41 p.m.•10 views

onlinecasting.co.za XSS vulnerability

Vulnerable URL: http://www.onlinecasting.co.za/search.asp?mode=seek=model%3C!%27/%22/%27/%22/--%3E%3C/Script%3E%3CImage%20Srcset=K%20/;%20Onerror=confirmOPENBUGBOUNTY%20//%3E=actor=dancer=singer=extrawoman=onman=on=0=0=0=0age=0age=200height=0height=240=0=20=on===t1.datecreated%20desc Details:...

6.3AI score

Exploits0

Openbugbounty•added 2017/04/08 11:16 a.m.•11 views

sonhaber.blog XSS vulnerability

Vulnerable URL: http://www.sonhaber.blog/?s="/alert/openbugbounty/...

6.9AI score

Exploits0

Openbugbounty•added 2017/04/02 1:32 p.m.•11 views

adzine.de XSS vulnerability

Vulnerable URL: https://www.adzine.de/suche/?q=a%3E%27%3E%22%3Et%3Ci%3Ep%3Cimg+src%3Dy+onerror%3Dprompt%28%2Fopenbugbounty%2F%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

6.3AI score

Exploits0

Citrix•added 2017/03/29 12:0 a.m.•7 views

Draft folder emails in Secure Mail not syncing with MS Exchange

Q: Users create drafts in Secure Mail but these do not get synced with MS Exchange and viewable in Outlook. After repeated attempts to amend and save the draft it will be deleted without being synced. Is this a known issue? A: With regard to the Draft folder syncing, there are limitation regardin...

7AI score

Exploits0

Openbugbounty•added 2017/03/28 2:17 p.m.•16 views

quechoisir.org XSS vulnerability

Vulnerable URL: https://www.quechoisir.org/utils/recherche/?keyword='"/alert"openbugbounty"...

6.9AI score

Exploits0

Cvelist•added 2017/03/28 2:46 a.m.•27 views

CVE-2016-9459

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is delivering the log in JSON format to the end-user. The file was delivered with an attachment...

5.9AI score0.01493EPSS

Exploits1References8

Tenable Nessus•added 2017/03/28 12:0 a.m.•13 views

openSUSE Security Update : xtrabackup (openSUSE-2017-382)

This update to xtrabackup 2.3.7 fixes one security issue and bugs. The following security issue was fixed : - innobackupex and xtrabackup scripts were showing the password in the ps output when it was passed as a command line argument boo1026729 The following functionality was added : - new...

5.5AI score

Exploits0References1

Openbugbounty•added 2017/03/27 6:31 p.m.•8 views

kann.de XSS vulnerability

Vulnerable URL: https://www.kann.de/privat/suche/?searchterms=as'"trolotruli Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 760176 VIP website status:| No Check kann.de SSL...

6.3AI score

Exploits0

Prion•added 2017/03/26 5:59 a.m.•11 views

Open redirect

Netflix Security Monkey before 0.8.0 has an Open Redirect. The logout functionality accepted the "next" parameter which then redirects to any domain irrespective of the Host header...

5.8CVSS6.3AI score0.00957EPSS

Exploits0References4Affected Software1

Openbugbounty•added 2017/03/25 12:39 a.m.•18 views

qoo10.com XSS vulnerability

Vulnerable URL: https://www.qoo10.com/s/?keyword='--!'...

6.9AI score

Exploits0

Openbugbounty•added 2017/03/25 12:30 a.m.•13 views

qoo10.hk XSS vulnerability

Vulnerable URL: https://www.qoo10.hk/s/?keyword='--!'...

6.9AI score

Exploits0

Debian•added 2017/03/19 9:43 a.m.•198 views

[SECURITY] DLA-862-1: sitesummary regression update

Package : sitesummary Version : 0.1.8+deb7u2 Debian Bug : 852623 The fix for CVE-2016-8743 in apache2 2.2.22-13+deb7u8 DLA-841-1 caused 852623 in sitesummary, breaking the sitesummary-upload functionality. To address this sitesummary-upload needs to be changed to send CRLF \r\n line endings to be...

7.5CVSS6.7AI score0.13252EPSS

Exploits0

Openbugbounty•added 2017/03/19 12:57 a.m.•12 views

idhost.kz XSS vulnerability

Vulnerable URL: http://idhost.kz/site/search?q=%27;%22%3E;;--%3E%3C/SCRIPT%3E-%3C/style%3E-%3C/title%3E-%3C/BoDy%3E-%3Cmarquee%3E-%3Ch1%3EOmniGooch%3C/h1%3E-%3C/marquee%3E-%3Csvg/onload=alert%27XSSPOSED%27;%3E;%27/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.20...

6.3AI score

Exploits0

Openbugbounty•added 2017/03/17 4:18 p.m.•11 views

mfa.gov.by XSS vulnerability

Vulnerable URL: http://mfa.gov.by/search/?what="...

6.9AI score

Exploits0

Openbugbounty•added 2017/03/16 7:56 p.m.•13 views

theaterverzeichnis.de XSS vulnerability

Vulnerable URL: http://www.theaterverzeichnis.de/suche.php?suche='"--!'...

6.9AI score

Exploits0