CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

847 matches found

Prion•added 2006/05/24 11:2 p.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.html in Alkacon OpenCms 6.0.0, 6.0.2, and 6.0.3 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search action...

2.6CVSS6.2AI score0.00622EPSS

Exploits1References6Affected Software1

Cvelist•added 2006/05/24 11:0 p.m.•22 views

CVE-2006-2571

5.7AI score0.00622EPSS

Exploits1References6

OSV•added 2006/04/18 10:2 a.m.•1 views

DEBIAN-CVE-2006-1803

Cross-site scripting XSS vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to inject arbitrary web script or HTML via the sqlquery parameter...

4.3CVSS6AI score0.08966EPSS

Exploits1References1

Cvelist•added 2006/03/07 11:0 a.m.•13 views

CVE-2006-1041

Multiple cross-site scripting XSS vulnerabilities in Gregarius 0.5.2 allow remote attackers to inject arbitrary web script or HTML via the 1 rssquery parameter to search.php or 2 tag parameter to tags.php...

5.8AI score0.00527EPSS

Exploits0References7

Cvelist•added 2006/02/15 11:0 a.m.•10 views

CVE-2006-0699

Cross-site scripting XSS vulnerability in search.php in QWikiWiki 1.5, and possibly 1.5.1 and other versions, allows remote attackers to inject arbitrary web script or HTML via the query parameter...

5.8AI score0.00565EPSS

Exploits0References5

CVE•added 2006/02/02 11:0 a.m.•33 views

CVE-2006-0521

CVE-2006-0521 is a Cross-site scripting (XSS) vulnerability in BrowserCRM’s results.php where a manipulated query parameter can inject arbitrary script/HTML (demonstrated with an IMG SRC tag). Affects BrowserCRM; CVSS v2 base score 4.3 (MEDIUM). No explicit exploit details or remediation are prov...

4.3CVSS5.7AI score0.00527EPSS

Exploits0References7Affected Software1

CVE•added 2006/01/31 11:0 a.m.•41 views

CVE-2006-0480

Technical details for CVE-2006-0480 are not publicly available in the provided documents. Monitor for updates.

4.3CVSS5.7AI score0.00685EPSS

Exploits0References6Affected Software1

Prion•added 2006/01/11 9:3 p.m.•16 views

Sql injection

SQL injection vulnerability in the search module modules/Search/index.php of PHPNuke EV 7.7 -R1 allows remote attackers to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792...

7.5CVSS8.7AI score0.69335EPSS

Exploits2References6Affected Software1

Cvelist•added 2005/12/29 11:0 a.m.•13 views

CVE-2005-4580

Cross-site scripting XSS vulnerability in Day Communique 4 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search...

5.7AI score0.00427EPSS

Exploits0References5

NVD•added 2005/12/20 11:3 a.m.•5 views

CVE-2005-4401

Cross-site scripting XSS vulnerability in Lutece 1.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the query parameter...

4.3CVSS5.9AI score0.00346EPSS

Exploits0References4

Cvelist•added 2005/12/20 1:0 a.m.•10 views

CVE-2005-4354

Cross-site scripting XSS vulnerability in webglimpse.cgi in Webglimpse 2.14.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the query parameter...

5.7AI score0.00297EPSS

Exploits0References2

NVD•added 2005/12/05 11:3 a.m.•9 views

CVE-2005-4024

Cross-site scripting XSS vulnerability in Interspire FastFind 2004 and 2005 allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS5.7AI score0.00297EPSS

Exploits0References2

Cvelist•added 2005/11/21 11:0 a.m.•13 views

CVE-2005-3727

SQL injection vulnerability in debug/queryresults.jsp in Idetix Software Systems Revize CMS allows remote attackers to execute arbitrary SQL commands via the query parameter...

8.4AI score0.03693EPSS

Exploits1References6

Cvelist•added 2005/11/21 11:0 a.m.•13 views

CVE-2005-3726

SQL injection vulnerability in Interspire ArticleLive NX 0.3 allows remote attackers to execute arbitrary SQL commands via the Query parameter...

8.4AI score0.00619EPSS

Exploits0References5

Cvelist•added 2005/10/25 4:0 a.m.•13 views

CVE-2004-2492

Cross-site scripting XSS vulnerability in Groupmax World Wide Web GmaxWWW Desktop 5, 6, and Desktop for Jichitai 6, allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter...

5.8AI score0.00427EPSS

Exploits0References5

NVD•added 2005/09/28 10:3 p.m.•8 views

CVE-2005-3096

Avi Alkalay nslookup.cgi program, dated 16 June 2002, allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter...

7.5CVSS7.7AI score0.03811EPSS

Exploits1References7

Cvelist•added 2005/07/27 4:0 a.m.•9 views

CVE-2005-2402

Cross-site scripting XSS vulnerability in search.php in PHPSiteSearch 1.7.7d allows remote attackers to inject arbitrary web script or HTML via the query parameter...

5.7AI score0.00504EPSS

Exploits1References5

NVD•added 2005/07/27 4:0 a.m.•8 views

CVE-2005-2402

Cross-site scripting XSS vulnerability in search.php in PHPSiteSearch 1.7.7d allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS5.7AI score0.00504EPSS

Exploits1References5

NVD•added 2005/05/02 4:0 a.m.•6 views

CVE-2005-0909

PHP remote file inclusion vulnerability in shoutact.php for TKai's Shoutbox allows remote attackers to execute arbitrary PHP code via the query parameter...

7.5CVSS7.6AI score0.00717EPSS

Exploits0References3

Cvelist•added 2005/03/29 5:0 a.m.•13 views

CVE-2005-0909

PHP remote file inclusion vulnerability in shoutact.php for TKai's Shoutbox allows remote attackers to execute arbitrary PHP code via the query parameter...

7.6AI score0.00717EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by