CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6232 matches found

0day.today•added 2012/03/28 12:0 a.m.•30 views

PicoPublisher v2.0 Remote SQL injection

Exploit for php platform in category web applications Exploit Title : PicoPublisher v2.0 Remote SQL injection Date : 29/03/2012 Author : ZeTH Contact : zeth/at/hacktheplan8/dot/com http://www.hacktheplan8.com Vendor : Pico Software Site : http://pico.no/ Version : 2.0 Price : $29,00 Dork :...

7.1AI score

Exploits0

Fedora•added 2011/11/29 12:3 a.m.•36 views

[SECURITY] Fedora 15 Update: libsocialweb-0.25.20-1.fc15

libsocialweb is a social data server which fetches data from the "social we b", such as your friend's blog posts and photos, upcoming events, recently play ed tracks, and pending eBay auctions. It also provides a service to update your status on web services which support it, such as MySpace and...

5.8CVSS2.6AI score0.018EPSS

Exploits0

Exploit DB•added 2011/11/03 12:0 a.m.•31 views

Jara 1.6 - Multiple Vulnerabilities

!/Mohammed/bin/YahYa Jara v1.6 Multiple Vulnerabilities -------------------------------------------+ download : http://sourceforge.net/projects/jara/files/v1.6/jarav16.zip AutHOr : Or4nG.M4n cOntAct : priv8teathotmail.com versiOn : v1.6 Tested : My Mind :...

7AI score

Exploits0

Patchstack•added 2011/04/26 12:0 a.m.•8 views

WordPress Ajax Recent Posts Plugin 1.0.1 - Cross-Site Scripting

WordPress Ajax Recent Posts plugin's "do" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...

2.9AI score

Exploits0References1Affected Software1

exploitpack•added 2011/04/26 12:0 a.m.•18 views

WordPress Plugin WP Ajax Recent Posts 1.0.1 - do Cross-Site Scripting

WordPress Plugin WP Ajax Recent Posts 1.0.1 - do Cross-Site Scripting source: https://www.securityfocus.com/bid/47579/info The WP Ajax Recent Posts WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...

0.4AI score

Exploits0

htbridge•added 2011/04/12 12:0 a.m.•29 views

Cross-site Scripting (XSS) Vulnerability in WP-Ajax-Recent-Posts

High-Tech Bridge SA Security Research Lab has discovered vulnerability in WP-Ajax-Recent-Posts which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in WP-Ajax-Recent-Posts The vulnerability exists due to input sanitation error in the "number"...

4.3CVSS6AI score

Exploits0Affected Software1

NVD•added 2011/03/28 4:55 p.m.•14 views

CVE-2011-0760

Multiple cross-site request forgery CSRF vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting XSS sequences via the 1...

4.3CVSS6.7AI score0.00964EPSS

Exploits0References5

Prion•added 2011/03/28 4:55 p.m.•16 views

Cross site request forgery (csrf)

4.3CVSS7AI score0.00964EPSS

Exploits0References5Affected Software1

CVE•added 2011/03/28 4:0 p.m.•44 views

CVE-2011-0760

CVE-2011-0760 affects the WP Related Posts WordPress plugin (version 1.0). The vulnerability is a cross-site request forgery (CSRF) in the plugin’s configuration screen, enabling remote attackers to hijack administrator sessions and inject cross-site scripting (XSS) via the parameters wp_relatedp...

4.3CVSS6.8AI score0.00964EPSS

Exploits0References5Affected Software1

Cvelist•added 2011/03/28 4:0 p.m.•19 views

CVE-2011-0760

6.7AI score0.00964EPSS

Exploits0References5

WPVulnDB•added 2011/03/17 12:0 a.m.•16 views

WP Related Posts <= 1.0 - Multiple CSRF

The WP Related Posts WordPress plugin was affected by a Multiple CSRF security vulnerability...

4.3CVSS2AI score0.00964EPSS

Exploits0References3Affected Software1