CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7210 matches found

NVD•added 2009/07/27 2:30 p.m.•18 views

CVE-2009-2599

SQL injection vulnerability in index.php in RadCLASSIFIEDS Gold 2.0 allows remote attackers to execute arbitrary SQL commands via the seller parameter in a search action...

7.5CVSS8.3AI score0.00999EPSS

Exploits0References3

Prion•added 2009/07/27 2:30 p.m.•16 views

Sql injection

Multiple SQL injection vulnerabilities in Online Grades & Attendance 3.2.6 and earlier allow 1 remote attackers to execute arbitrary SQL commands via the key parameter in a resetpass action to index.php and 2 remote authenticated users to execute arbitrary SQL commands via the ADD parameter in a...

6.5CVSS8.8AI score0.00893EPSS

Exploits0References3Affected Software1

Cvelist•added 2009/07/27 2:22 p.m.•21 views

CVE-2009-2598

8.1AI score0.00893EPSS

Exploits0References3

CVE•added 2009/07/27 2:22 p.m.•38 views

CVE-2009-2603

CVE-2009-2603 : The content shows concrete details: Escon SupportPortal Pro 3.0 contains multiple SQL injection flaws in index.php, exploitable via the (1) cat and (2) tid parameters. Remote attackers could execute arbitrary SQL commands. Impact is partial confidentiality, integrity, and availabi...

7.5CVSS8.8AI score0.00999EPSS

Exploits0References3Affected Software1

Cvelist•added 2009/07/27 2:22 p.m.•15 views

CVE-2009-2603

Multiple SQL injection vulnerabilities in index.php in Escon SupportPortal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the 1 cat and 2 tid parameters...

8.5AI score0.00999EPSS

Exploits0References3

exploitpack•added 2009/07/27 12:0 a.m.•18 views

Basilic 1.5.13 - index.php Cross-Site Scripting

Basilic 1.5.13 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43372/info Basilic is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score

Exploits0

NVD•added 2009/07/24 4:30 p.m.•15 views

CVE-2009-2589

Multiple cross-site scripting XSS vulnerabilities in Hutscripts PHP Website Script allow remote attackers to inject arbitrary web script or HTML via the msg parameter to 1 feedback.php, 2 index.php, and 3 lostpassword.php...

4.3CVSS5.9AI score0.01341EPSS

Exploits1References7

0day.today•added 2009/07/24 12:0 a.m.•14 views

Basilic 1.5.13 (index.php idAuthor) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== Basilic 1.5.13 index.php idAuthor SQL Injection Vulnerability ===============================================================...

7.1AI score

Exploits0

Packet Storm•added 2009/07/24 12:0 a.m.•24 views

Basilic 1.5.13 SQL Injection

================================================================================================== o Basilic 1.5.13 SQL Injection Vulnerability Software : Basilic version 1.5.13 Vendor : http://artis.imag.fr/Software/Basilic/ Download : http://artis.imag.fr/Software/Basilic/basilic-1.5.14.tar.gz...

Exploits0

seebug.org•added 2009/07/24 12:0 a.m.•15 views

Basilic 1.5.13 (index.php idAuthor) SQL Injection Vulnerability

No description provided by source. ================================================================================================== o Basilic 1.5.13 SQL Injection Vulnerability Software : Basilic version 1.5.13 Vendor : http://artis.imag.fr/Software/Basilic/ Download :...

7.1AI score

Exploits0

exploitpack•added 2009/07/24 12:0 a.m.•12 views

Basilic 1.5.13 - index.php?idAuthor SQL Injection

Basilic 1.5.13 - index.php?idAuthor SQL Injection ================================================================================================== o Basilic 1.5.13 SQL Injection Vulnerability Software : Basilic version 1.5.13 Vendor : http://artis.imag.fr/Software/Basilic/ Download :...

0.2AI score

Exploits0

Exploit DB•added 2009/07/24 12:0 a.m.•28 views

Basilic 1.5.13 - 'index.php?idAuthor' SQL Injection

7AI score

Exploits0

NVD•added 2009/07/22 5:30 p.m.•16 views

CVE-2009-2574

index.php in MiniTwitter 0.2 beta allows remote authenticated users to modify certain options of arbitrary accounts via an opt action...

6.5CVSS6.4AI score0.0194EPSS

Exploits1References4

CVE•added 2009/07/22 5:9 p.m.•47 views

CVE-2009-2574

CVE-2009-2574 affects MiniTwitter 0.2 beta. The flaw in index.php lets remote authenticated users modify certain options of arbitrary accounts via an opt action. Exploitation is documented (Exploit-DB) and related references link to insecure parameter handling; CVSS from NVD indicates a medium ri...

6.5CVSS6.6AI score0.0194EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/07/22 5:9 p.m.•22 views

CVE-2009-2574

index.php in MiniTwitter 0.2 beta allows remote authenticated users to modify certain options of arbitrary accounts via an opt action...

6.4AI score0.0194EPSS

Exploits1References4

Cvelist•added 2009/07/22 5:9 p.m.•13 views

CVE-2009-2569

Multiple cross-site scripting XSS vulnerabilities in Verlihub Control Panel VHCP 1.7e allow remote attackers to inject arbitrary web script or HTML via 1 the nick parameter in a login action to index.php or 2 the URI in a news request to index.html...

5.8AI score0.01761EPSS

Exploits1References4

seebug.org•added 2009/07/16 12:0 a.m.•14 views

dB Masters Multimedia's Content Manager 4.5 SQL Injection Vulnerability

No description provided by source. =========================================================================================== o dB Masters Multimedia's Content Manager 4.5 SQL Injection Vulnerability Software : dB Masters Multimedia's Content Manager version 4.5 Vendor : http://www.dbmasters.net...

7.1AI score

Exploits0

exploitpack•added 2009/07/16 12:0 a.m.•11 views

dB Masters MultiMedias Content Manager 4.5 - SQL Injection

dB Masters MultiMedias Content Manager 4.5 - SQL Injection =========================================================================================== o dB Masters Multimedia's Content Manager 4.5 SQL Injection Vulnerability Software : dB Masters Multimedia's Content Manager version 4.5 Vendor :...

0.3AI score

Exploits0

Exploit DB•added 2009/07/16 12:0 a.m.•26 views

dB Masters MultiMedia's Content Manager 4.5 - SQL Injection

=========================================================================================== o dB Masters Multimedia's Content Manager 4.5 SQL Injection Vulnerability Software : dB Masters Multimedia's Content Manager version 4.5 Vendor : http://www.dbmasters.net/ Author : NoGe Contact :...

7.4AI score

Exploits0

Cvelist•added 2009/07/14 2:0 p.m.•17 views

CVE-2009-2451

Multiple SQL injection vulnerabilities in index.php in MIM:InfiniX 1.2.003 and possibly earlier versions allow remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters in a calendar action, or 3 a search term in the search form...

8.5AI score0.00987EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by