CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1167 matches found

exploitpack•added 2007/08/20 12:0 a.m.•15 views

Gurur Haber 2.0 - Uyeler2.php SQL Injection

Gurur Haber 2.0 - Uyeler2.php SQL Injection source: https://www.securityfocus.com/bid/25368/info Gurur Haber is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Exploit DB•added 2007/08/20 12:0 a.m.•16 views

Gurur Haber 2.0 - 'Uyeler2.php' SQL Injection

source: https://www.securityfocus.com/bid/25368/info Gurur Haber is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

exploitpack•added 2007/07/28 12:0 a.m.•12 views

Berthanas Ziyaretci Defteri 2.0 - Yonetici.asp SQL Injection

Berthanas Ziyaretci Defteri 2.0 - Yonetici.asp SQL Injection source: https://www.securityfocus.com/bid/25109/info Berthanas Ziyaretci Defteri is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...

exploitpack•added 2007/07/23 12:0 a.m.•12 views

Alisveris Sitesi Scripti - index.asp SQL Injection

Alisveris Sitesi Scripti - index.asp SQL Injection source: https://www.securityfocus.com/bid/25005/info Alisveris Sitesi Scripti is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues...

exploitpack•added 2007/07/13 12:0 a.m.•12 views

ActiveWeb Contentserver 5.6.2929 - Picture_Real_Edit.asp SQL Injection

ActiveWeb Contentserver 5.6.2929 - PictureRealEdit.asp SQL Injection source: https://www.securityfocus.com/bid/24894/info activeWeb contentserver is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A...

exploitpack•added 2007/06/20 12:0 a.m.•21 views

Comersus Cart 7.0.7 - comersus_customerAuthenticateForm.asp redirectUrl Cross-Site Scripting

Comersus Cart 7.0.7 - comersuscustomerAuthenticateForm.asp redirectUrl Cross-Site Scripting source: https://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, acce...

Prion•added 2007/06/14 11:30 p.m.•22 views

Code injection

Unspecified vulnerability in Sun Java System Directory Server slapd 6.0, and 5.2 with Patch 3 or 4, allows remote attackers to modify certain data via unknown vectors...

6.4CVSS6.9AI score0.02221EPSS

Exploits0References7Affected Software1

exploitpack•added 2007/05/31 12:0 a.m.•14 views

PHP JackKnife 2.21 - (PHPJK) UserAreaAuthenticate.php?sUName Cross-Site Scripting

PHP JackKnife 2.21 - PHPJK UserAreaAuthenticate.php?sUName Cross-Site Scripting source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an...

Exploit DB•added 2007/05/31 12:0 a.m.•31 views

PHP JackKnife 2.21 - '(PHPJK) G_Display.php?iCategoryUnq' SQL Injection

source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

Exploit DB•added 2007/05/29 12:0 a.m.•22 views

CPCommerce 1.1 - 'manufacturer.php' SQL Injection

source: https://www.securityfocus.com/bid/24223/info cpCommerce is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Exploit DB•added 2007/04/30 12:0 a.m.•22 views

E-Annu - 'home.php' SQL Injection

source: https://www.securityfocus.com/bid/23727/info E-Annu is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, ...

exploitpack•added 2007/04/17 12:0 a.m.•11 views

PHP-Nuke 8.0.3.3b - SQL Injection Protection Bypass Multiple SQL Injections

PHP-Nuke 8.0.3.3b - SQL Injection Protection Bypass Multiple SQL Injections source: https://www.securityfocus.com/bid/23528/info PHP-Nuke is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A...

exploitpack•added 2006/12/02 12:0 a.m.•21 views

DUClassmate 1.x - ICity SQL Injection

DUClassmate 1.x - ICity SQL Injection source: https://www.securityfocus.com/bid/24637/info DUClassmate is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

exploitpack•added 2006/11/14 12:0 a.m.•7 views

2020 Real Estate 3.2 - listings.asp SQL Injection

2020 Real Estate 3.2 - listings.asp SQL Injection source: https://www.securityfocus.com/bid/21036/info 20/20 Real Estate is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Exploit DB•added 2006/11/14 12:0 a.m.•19 views

Inventory Manager - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/21069/info Inventory Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. Successful exploits of these vulnerabiliti...

Exploit DB•added 2006/10/30 12:0 a.m.•14 views

Evandor Easy notesManager 0.0.1 - 'login.php?Username' SQL Injection

source: https://www.securityfocus.com/bid/20803/info Easy notesManager is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application, access or...

NVD•added 2006/10/23 5:7 p.m.•18 views

CVE-2006-5443

Unspecified vulnerability in XIAO Gang WWW Interactive Mathematics Server WIMS before 3.60 allows remote attackers to modify unspecified data via unspecified vectors involving "variable rights."...

5CVSS6.6AI score0.01284EPSS

Exploits0References4

Cvelist•added 2006/10/23 5:0 p.m.•20 views

CVE-2006-5443

Unspecified vulnerability in XIAO Gang WWW Interactive Mathematics Server WIMS before 3.60 allows remote attackers to modify unspecified data via unspecified vectors involving "variable rights."...

6.5AI score0.01284EPSS

Exploits0References4

Tenable Nessus•added 2006/09/19 12:0 a.m.•21 views

MyReview Admin.php email Parameter SQL Injection

The remote host is running MyReview, an open source paper submission and review web application. The version of MyReview installed on the remote host fails to properly sanitize input to the 'email' parameter before using it in the 'GetMember' function in a database query. Regardless of PHP's...

7.5CVSS5.6AI score0.01086EPSS

Exploits1References1

exploitpack•added 2006/08/30 12:0 a.m.•7 views

Digiappz Freekot 1.01 - ASP SQL Injection

Digiappz Freekot 1.01 - ASP SQL Injection source: https://www.securityfocus.com/bid/19768/info Digiappz Freekot is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit could allow an attacker to compromise the application,...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by