Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1148 matches found

NVD
NVDadded 2002/07/03 4:0 a.m.15 views

CVE-2002-0554

webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request...

7.5CVSS7.3AI score0.06735EPSS
Exploits1References3
NVD
NVDadded 2002/07/03 4:0 a.m.11 views

CVE-2002-0539

Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the skey cookie...

10CVSS7.5AI score0.02072EPSS
Exploits1References5
Exploit DB
Exploit DBadded 2002/06/27 12:0 a.m.29 views

Summit Computer Networks Lil' HTTP Server 2 - 'URLCount.cgi' HTML Injection

source: https://www.securityfocus.com/bid/5115/info Lil' HTTP server is a web server application for Windows environments and is maintained by Summit Computer Networks. Reportedly, Lil' HTTP Server is vulnerable to HTML injection attacks. The vulnerability is present in the 'REPORT' function foun...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2002/06/10 12:0 a.m.13 views

MyHelpDesk 20020509 - HTML Injection

MyHelpDesk 20020509 - HTML Injection source: https://www.securityfocus.com/bid/4967/info It has been reported that MyHelpDesk is vulnerable to HTML injection attacks. MyHelpDesk does not properly sanitize HTML tags from form fields. Attackers may pass arbitrary HTML and script code through the...

7.6AI score
Exploits0
Exploit DB
Exploit DBadded 2002/06/10 12:0 a.m.19 views

MyHelpDesk 20020509 - SQL Injection

source: https://www.securityfocus.com/bid/4971/info It is reported that MyHelpDesk version 20020509 and earlier are vulnerable to SQL injection attacks. Data supplied by the remote user, via CGI parameters, is used directly as part of SQL statements. As input sanitization is not properly performe...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2002/04/17 12:0 a.m.36 views

AOL Instant Messenger 4.x - Arbitrary File Creation

source: https://www.securityfocus.com/bid/4526/info An issue has been reported, which could allow an AIM user to save files to arbitrary locations. Reportedly, this is achievable when a direct connection is made between two AIM users. Files that are sent to a user include an img tag and a data ta...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2002/04/17 12:0 a.m.48 views

[NEWS] Demarc PureSecure Allows Users to Bypass Login Restrictions

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...

8.1AI score
Exploits0
securityvulns
securityvulnsadded 2001/09/11 12:0 a.m.31 views

RUS-CERT Advisory 2001-09:01

Vulnerabilities in PAM and NSS modules using a PostgreSQL database During investigating the problem described in RUS-CERT Advisory 2001-08:01, it became evident that a few PAM and NSS modules which use PostgreSQL as database backend are vulnerable to SQL code injections attacks, too. Systems...

0.5AI score
Exploits0
Rows per page
Query Builder