CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7039 matches found

Exploit DB•added 2005/06/17 12:0 a.m.•61 views

Claroline E-Learning 1.6 - Remote Hash SQL Injection (1)

Alphaprogrammer , Oilkarchack , DrCephaleX , Str0ke And Iranian Hacking & Security Teams : IHS TeaM , alphaST , Shabgard Security Team , Emperor Hacking Team , Crouz Security Team & Simorgh-ev Security Team Config : please replace your address : $url = "http:///www.example.com"; Please replace yo...

Tenable Nessus•added 2005/04/29 12:0 a.m.•103 views

Claroline < 1.5.4 / 1.6.0 Multiple Vulnerabilities (RFI, SQLi, XSS, Traversal)

The version of Claroline an open source, collaborative learning environment installed on the remote host suffers from a number of remotely-exploitable vulnerabilities, including: - Multiple Remote File Include Vulnerabilities Four scripts let an attacker read arbitrary files on the remote host an...

7.5CVSS6.5AI score0.04863EPSS

Exploits3References5

exploitpack•added 2005/04/27 12:0 a.m.•10 views

Claroline E-Learning 1.51.6 - userInfo.php Multiple SQL Injections

Claroline E-Learning 1.51.6 - userInfo.php Multiple SQL Injections source: https://www.securityfocus.com/bid/13407/info Multiple remote input validation vulnerabilities affect Claroline e-Learning Application. These issues are due to a failure of the application to properly sanitize user-supplied...

exploitpack•added 2005/04/27 12:0 a.m.•10 views

Claroline E-Learning 1.51.6 - exercises_details.php?exo_id SQL Injection

Claroline E-Learning 1.51.6 - exercisesdetails.php?exoid SQL Injection source: https://www.securityfocus.com/bid/13407/info Multiple remote input validation vulnerabilities affect Claroline e-Learning Application. These issues are due to a failure of the application to properly sanitize...

Exploit DB•added 2005/04/27 12:0 a.m.•19 views

Claroline E-Learning 1.5/1.6 - 'userInfo.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/13407/info Multiple remote input validation vulnerabilities affect Claroline e-Learning Application. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical application...

Exploit DB•added 2005/04/27 12:0 a.m.•30 views

Claroline E-Learning 1.5/1.6 - 'exercises_details.php?exo_id' SQL Injection

source: https://www.securityfocus.com/bid/13407/info Multiple remote input validation vulnerabilities affect Claroline e-Learning Application. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical application...

securityvulns•added 2005/01/07 12:0 a.m.•35 views

grsecurity 2.1.0 release / 5 Linux kernel advisories

grsecurity 2.1.0 release / Linux Kernel advisories -------------------------------------------------------------------- Table Of Contents: 1 grsecurity 2.1.0 announcement and changelog 2 Linux Kernel advisory introduction 3 2.4/2.6 random poolsize sysctl handler integer overflow 4 2.6 scsi ioctl...

Packet Storm•added 2005/01/02 12:0 a.m.•31 views

moodle142.txt

+------------------------------------------------------------------------------+ | | | Multiple Vulnerabilities in Moodle | | ================================== | | | | Author: Bartek Nowotarski | | Published: 2004-12-27 |...

Packet Storm•added 2004/06/14 12:0 a.m.•18 views

blackboardLS.txt

Advisory: Blackboard Learning System - Stealing documents out of the digital dropbox ========================================================================== Blackboard ---------- The Blackboard Learning System is a Web-based server software platform that offers course management. More...

securityvulns•added 2004/06/11 12:0 a.m.•58 views

Blackboard Learning System - Stealing documents out of the digital dropbox

Advisory: Blackboard Learning System - Stealing documents out of the digital dropbox ========================================================================== Blackboard ---------- The Blackboard Learning System is a Web-based server software platform that offers course management. More...

exploitpack•added 2004/06/10 12:0 a.m.•12 views

BlackBoard Learning System 6.0 - Dropbox File Download

BlackBoard Learning System 6.0 - Dropbox File Download source: https://www.securityfocus.com/bid/10515/info It is reported that Blackboard improperly allows users to download files posted in the 'Digital Dropbox'. Files in the dropbox are intended for the course administrators. The application do...

Exploit DB•added 2004/06/10 12:0 a.m.•27 views

BlackBoard Learning System 6.0 - Dropbox File Download

source: https://www.securityfocus.com/bid/10515/info It is reported that Blackboard improperly allows users to download files posted in the 'Digital Dropbox'. Files in the dropbox are intended for the course administrators. The application does not verify that the files requested for download are...

Exploit DB•added 2004/04/12 12:0 a.m.•27 views

BlackBoard Learning System 5.x/6.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/10101/info Blackboard Learning System has been reported prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly validate user supplied URI input. The first issue is reported to affect the...

securityvulns•added 2003/01/23 12:0 a.m.•29 views

Blackboard 5.x Password Retrieval

-- Overview Through the exploitation of a SQL injection vulnerability it is possible for an unauthenticated user to query the Blackboard user directory and: - Enumerate users with a given password. - Extract the MD5 password of any given user. Blackboard Learning System 5.x, level 1 and 2 are...

NVD•added 2002/12/31 5:0 a.m.•12 views

CVE-2002-1909

Click2Learn Ingenium Learning Management System 5.1 and 6.1 stores the hashed administrative password in a config.txt file under the htdocs directory, which allows remote attackers to obtain the administrative password...

5CVSS6.8AI score0.01373EPSS

Exploits0References3

NVD•added 2002/12/31 5:0 a.m.•19 views

CVE-2002-2316

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing...

5CVSS6.2AI score0.01232EPSS

Exploits1References4

securityvulns•added 2002/10/16 12:0 a.m.•41 views

Ingenium Admin Password Vulnerability

The vendor was contacted, but I have not received any response other than an autoresponder over the past week... -E Security Advisory -- Click2Learn's Ingenium LMS Brian Enigma [email protected] http://netninja.com/papers/ingenium/ ----------------------- OVERVIEW ----------------------- Produc...

securityvulns•added 2001/12/18 12:0 a.m.•22 views

Dangerous information in CentraOne Log files, possible user impersonation

-----BEGIN PGP SIGNED MESSAGE----- Vendor Contacted: 12/7/01 Date Published: 12/17/01 Bugtraq ID: - CVE CAN: - Title: Dangerous information being recorded in CentraOne Log files, possible user impersonation Severity: Medium Remote Exploit: No Local Exploit: Yes Vulnerability Description: Centra i...

Microsoft Security Update•added 1970/01/01 12:0 a.m.•12 views

Security Update for Learning Essentials 1.0 and 1.1 and 1.5 (KB929437)

Microsoft has released a security update for the Learning Essentials for Microsoft Office tools add-in versions 1.0, 1.1, and 1.5. This update addresses a vulnerability that could allow remote code execution...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by