CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1167 matches found

OpenVAS•added 2009/07/26 12:0 a.m.•12 views

Scripteen Free Image Hosting Script Multiple Vulnerabilities

Scripteen Free Image Hosting Script is prone to multiple SQL-injection vulnerabilities and to an authentication-bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS6.9AI score0.01083EPSS

Exploits1References3

Exploit DB•added 2009/07/21 12:0 a.m.•51 views

Classified Linktrader Script - 'addlink.php' SQL Injection

source: https://www.securityfocus.com/bid/43497/info Classified Linktrader Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application,...

Exploit DB•added 2009/06/16 12:0 a.m.•16 views

PHPLive! 3.2.2 - 'request.php' SQL Injection

source: https://www.securityfocus.com/bid/35718/info PHPLive! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

OpenVAS•added 2009/05/28 12:0 a.m.•30 views

Cacti Multiple Input Validation Vulnerabilities

Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities - An HTTP response-splitting vulnerability. Attackers may exploit these vulnerabilities to influence or misrepresent how web...

7.5CVSS0.4AI score0.05246EPSS

Exploits3References1

exploitpack•added 2009/04/24 12:0 a.m.•12 views

PuterJams Blog PJBlog3 3.0.6 - action.asp SQL Injection

PuterJams Blog PJBlog3 3.0.6 - action.asp SQL Injection source: https://www.securityfocus.com/bid/34701/info PJBlog3 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attack...

Exploit DB•added 2009/04/16 12:0 a.m.•20 views

Geeklog 1.5.2 - 'usersettings.php' SQL Injection

source: https://www.securityfocus.com/bid/34553/info Geeklog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data,...

Exploit DB•added 2009/03/24 12:0 a.m.•103 views

PHPizabi 0.8 - 'notepad_body' SQL Injection

source: https://www.securityfocus.com/bid/34223/info PHPizabi is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

OpenVAS•added 2009/03/10 12:0 a.m.•21 views

vBulletin 'admincalendar.php' SQL Injection Vulnerability

vBulletin is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlyin...

6.5CVSS0.8AI score0.00962EPSS

OpenVAS•added 2009/03/10 12:0 a.m.•29 views

Scripts For Sites EZ Hotscripts 'software-description.php' SQL Injection Vulnerability

EZ Hotscripts is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the...

7.5CVSS0.4AI score0.00999EPSS

Exploit DB•added 2009/02/25 12:0 a.m.•28 views

Orooj CMS - 'news.php' SQL Injection

source: https://www.securityfocus.com/bid/33908/info Orooj CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify dat...

Exploit DB•added 2009/02/23 12:0 a.m.•23 views

Joomla! / Mambo Component gigCalendar 1.0 - 'banddetails.php' SQL Injection

source: https://www.securityfocus.com/bid/33859/info The gigCalendar component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

exploitpack•added 2009/01/26 12:0 a.m.•10 views

Lootan - login.asp SQL Injection

Lootan - login.asp SQL Injection source: https://www.securityfocus.com/bid/33439/info Lootan is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploit DB•added 2009/01/16 12:0 a.m.•48 views

Blog Manager - 'ItemID' SQL Injection

source: https://www.securityfocus.com/bid/33314/info DMXReady Blog Manager is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal...

Exploit DB•added 2008/12/04 12:0 a.m.•25 views

NPDS < 08.06 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/33051/info NPDS is prone to multiple input-validation vulnerabilities: - Multiple local file-include vulnerabilities - An HTML-injection vulnerability - Multiple SQL-injection vulnerabilities - Multiple cross-site scripting vulnerabilities Exploiting thes...

exploitpack•added 2008/12/02 12:0 a.m.•18 views

Orkut Clone - profile_social.php?id Cross-Site Scripting

Orkut Clone - profilesocial.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/32600/info Orkut Clone is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

exploitpack•added 2008/12/01 12:0 a.m.•14 views

ASP Forum Script - default.asp Query String Cross-Site Scripting

ASP Forum Script - default.asp Query String Cross-Site Scripting source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data...

exploitpack•added 2008/11/29 12:0 a.m.•13 views

Ocean12 (Multiple Products) - Admin_ID SQL Injection

Ocean12 Multiple Products - AdminID SQL Injection source: https://www.securityfocus.com/bid/32527/info Multiple Ocean12 products are prone to an SQL-injection vulnerability because they fail to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the...

Exploit DB•added 2008/11/10 12:0 a.m.•22 views

Dizi Portali - 'film.asp' SQL Injection

source: https://www.securityfocus.com/bid/32239/info Dizi Portali is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

exploitpack•added 2008/11/07 12:0 a.m.•13 views

TurnkeyForms Software Directory 1.0 - SQL Injection Cross-Site Scripting

TurnkeyForms Software Directory 1.0 - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/32175/info TurnkeyForms Software Directory is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied...

Exploit DB•added 2008/10/31 12:0 a.m.•38 views

phpWebSite 0.9.3 - 'links.php' SQL Injection

source: https://www.securityfocus.com/bid/32011/info phpWebSite is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by