CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7656 matches found

0day.today•added 2016/03/28 12:0 a.m.•51 views

Liferay Portal 5.1.2 - Persistent Cross-Site Scripting

Exploit for php platform in category web applications Exploit Title: Liferay Portal 5.1.2 - Persistent XSS Discovery Date: 2016-02-10 Exploit Author: Sarim Kiani Vendor Homepage: https://www.liferay.com Software Link: https://www.liferay.com/community/releases Version: 5.1.2 Tested on: Windows OS...

exploitpack•added 2016/03/28 12:0 a.m.•31 views

Liferay Portal 5.1.2 - Persistent Cross-Site Scripting

Liferay Portal 5.1.2 - Persistent Cross-Site Scripting Exploit Title: Liferay Portal 5.1.2 - Persistent XSS Discovery Date: 2016-02-10 Exploit Author: Sarim Kiani Vendor Homepage: https://www.liferay.com Software Link: https://www.liferay.com/community/releases Version: 5.1.2 Tested on: Windows O...

Packet Storm•added 2016/03/24 12:0 a.m.•36 views

WordPress WP External Links 1.80 Cross Site Scripting

Document Title: =============== WP External Links v1.80 - Cross Site Scripting References Source: ====================http://www.vulnerability-lab.com/getcontent.php?id=1788 Release Date: ============= 2016-03-24 Vulnerability Laboratory ID VL-ID: ==================================== 1788 Common...

Tenable Nessus•added 2016/03/22 12:0 a.m.•52 views

OracleVM 3.3 / 3.4 : openssh (OVMSA-2016-0038)

The remote OracleVM system is missing necessary patches to address critical security updates : - CVE-2015-5600: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices 1245969 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317816 - SSH2MSGDISCONNECT for user initiate...

8.5CVSS6.8AI score0.37016EPSS

Exploits17References7

0day.today•added 2016/03/21 12:0 a.m.•43 views

ProjectSend r582 - Multiple Cross-Site Scripting Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Multiple persistent XSS in ProjectSend Discovery Date: 2016/02/19 Public Disclosure Date: 2016/03/17 Exploit Author: Michael Helwig Contact: https://twitter.com/c0dmtr1x Project Homepage: http://www.projectsend.org/ Software Lin...

exploitpack•added 2016/03/21 12:0 a.m.•23 views

ProjectSend r582 - Multiple Cross-Site Scripting Vulnerabilities

ProjectSend r582 - Multiple Cross-Site Scripting Vulnerabilities Exploit Title: Multiple persistent XSS in ProjectSend Discovery Date: 2016/02/19 Public Disclosure Date: 2016/03/17 Exploit Author: Michael Helwig Contact: https://twitter.com/c0dmtr1x Project Homepage: http://www.projectsend.org/...

Exploit DB•added 2016/03/21 12:0 a.m.•34 views

ProjectSend r582 - Multiple Cross-Site Scripting Vulnerabilities

Exploit Title: Multiple persistent XSS in ProjectSend Discovery Date: 2016/02/19 Public Disclosure Date: 2016/03/17 Exploit Author: Michael Helwig Contact: https://twitter.com/c0dmtr1x Project Homepage: http://www.projectsend.org/ Software Link: http://www.projectsend.org/download/108/ Version:...

exploitpack•added 2016/03/16 12:0 a.m.•25 views

Monstra CMS 3.0.3 - Multiple Vulnerabilities

Monstra CMS 3.0.3 - Multiple Vulnerabilities Exploit Title: Monstra CMS 3.0.3 - Privilege Escalation / Remote Password Change Google Dork: intext:"Powered by Monstra"/users/registration Date: 2016-03-28 Exploit Author: Sarim Kiani Vendor Homepage: http://monstra.org Software Link:...

Packet Storm•added 2016/03/16 12:0 a.m.•43 views

Chamilo LMS 1.10.2 Cross Site Scripting

Document Title: =============== Chamlio LMS v1.10.2 - Profile Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1781 Release Date: ============= 2016-03-14 Vulnerability Laboratory ID VL-ID: ====================================...

0day.today•added 2016/03/16 12:0 a.m.•23 views

Monstra CMS 3.0.3 - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Monstra CMS 3.0.3 - Privilege Escalation / Remote Password Change Google Dork: intext:"Powered by Monstra"/users/registration Date: 2016-03-28 Exploit Author: Sarim Kiani Vendor Homepage: http://monstra.org Software Link:...

Exploit DB•added 2016/03/16 12:0 a.m.•26 views

Monstra CMS 3.0.3 - Multiple Vulnerabilities

Exploit Title: Monstra CMS 3.0.3 - Privilege Escalation / Remote Password Change Google Dork: intext:"Powered by Monstra"/users/registration Date: 2016-03-28 Exploit Author: Sarim Kiani Vendor Homepage: http://monstra.org Software Link: http://monstra.org/download Version: 3.0.3 Tested on: Window...

Hacker One•added 2016/03/14 3:32 p.m.•13 views

Zomato: Persistent XSS on Reservation / Booking Page

Hi, Its a persistent xss issue on booking or reservation page. I am going to add the video which is demonstrate the bug. Have a nice work! Here is video: https://www.youtube.com/watch?v=NBDBnKorF6o...

0day.today•added 2016/03/14 12:0 a.m.•65 views

TeamPass 2.1.24 - Multiple Vulnerabilities

Exploit for php platform in category web applications Affected Product: TeamPass Vulnerability Type: Multiple XSS,CSRF, SQL injections Fixed in Version: 2.1.25 https://github.com/nilsteampassnet/TeamPass/releases/tag/2.1.25.0 Vendor Website: http://www.teampass.net Software Link: :...

7.5CVSS0.2AI score0.03388EPSS

Exploit DB•added 2016/03/14 12:0 a.m.•65 views

TeamPass 2.1.24 - Multiple Vulnerabilities

Affected Product: TeamPass Vulnerability Type: Multiple XSS,CSRF, SQL injections Fixed in Version: 2.1.25 https://github.com/nilsteampassnet/TeamPass/releases/tag/2.1.25.0 Vendor Website: http://www.teampass.net Software Link: : https://github.com/nilsteampassnet/TeamPass Affected Version: 2.1.24...

9.8CVSS7.6AI score0.03388EPSS

Vulnerability Lab•added 2016/03/13 12:0 a.m.•67 views

Chamlio LMS v1.10.2 - (Profile) Persistent Web Vulnerability

Document Title: =============== Chamlio LMS v1.10.2 - Profile Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1781 Release Date: ============= 2016-03-13 Vulnerability Laboratory ID VL-ID: ====================================...

Vulnerability Lab•added 2016/03/13 12:0 a.m.•46 views

Chamlio LMS v1.10.2 - (Profile) Persistent Web Vulnerability

Document Title: =============== Chamlio LMS v1.10.2 - Profile Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1781 Release Date: ============= 2016-03-13 Vulnerability Laboratory ID VL-ID: ====================================...

exploitpack•added 2016/03/10 12:0 a.m.•32 views

WordPress Plugin WP Advanced Comment 0.10 - Persistent Cross-Site Scripting

WordPress Plugin WP Advanced Comment 0.10 - Persistent Cross-Site Scripting 1. Introduction Exploit Title: WordPress WP Advanced Comment 0.10 Persistent XSS Date: Mar.09.2016 Exploit Author: Mohammad Khaleghi Contact: https://twitter.com/blackmatrix Vendor: Ravi Shakya Tested On: Apache2.2 / PHP5...

0day.today•added 2016/03/10 12:0 a.m.•63 views

WordPress Advanced Comment 0.10 Plugin - Persistent Cross-Site Scripting

Exploit for php platform in category web applications 1. Introduction Exploit Title: WordPress WP Advanced Comment 0.10 Persistent XSS Date: Mar.09.2016 Exploit Author: Mohammad Khaleghi Contact: https://twitter.com/blackmatrix Vendor: Ravi Shakya Tested On: Apache2.2 / PHP5 / Kali 64 / WordPress...

Patchstack•added 2016/03/10 12:0 a.m.•17 views

WordPress WP Advanced Comment Plugin 0.10 - Persistent XSS

Because of this persistent XSS vulnerability, an attacker can change the value of "name="commentmetavalue" " parameter. Solution Upgrade the plugin...

Exploits0References1Affected Software1

Exploit DB•added 2016/03/10 12:0 a.m.•37 views

WordPress Plugin WP Advanced Comment 0.10 - Persistent Cross-Site Scripting

Introduction Exploit Title: WordPress WP Advanced Comment 0.10 Persistent XSS Date: Mar.09.2016 Exploit Author: Mohammad Khaleghi Contact: https://twitter.com/blackmatrix Vendor: Ravi Shakya Tested On: Apache2.2 / PHP5 / Kali 64 / WordPress 4.4.1 Category: Webapps Software Link:...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by