CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

128 matches found

Tenable Nessus•added 2011/11/18 12:0 a.m.•1510 views

PHP mb_send_mail() Function Parameter Security Bypass

According to its banner, the version of PHP installed on the remote host is affected by a flaw that allows an attacker to gain unauthorized privileges. When used with sendmail and when accepting remote input for the additionalparameters argument to the mbsendmail function, it is possible for...

3.2CVSS5.7AI score0.01304EPSS

Exploits1References2

OSV•added 2011/09/14 4:5 p.m.•3 views

DEBIAN-CVE-2011-2201

The Data::FormValidator module 4.66 and earlier for Perl, when untaintallconstraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input...

4.3CVSS6.6AI score0.06156EPSS

Exploits1References1

OpenVAS•added 2011/04/01 12:0 a.m.•12 views

Collabtive Multiple Remote Input Validation Vulnerabilities

Collabtive is prone to multiple remote input-validation vulnerabilities including cross-site scripting, HTML-injection, and directory-traversal issues. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.5AI score

Exploits0References3

Prion•added 2007/03/02 9:18 p.m.•16 views

Design/Logic Flaw

WebAPP before 0.9.9.5 allows remote attackers to submit Search form input that is not checked for 1 composition or 2 length, which has unknown impact, possibly related to "search form hijacking"...

7.5CVSS7.3AI score0.01402EPSS

Exploits0References5Affected Software1

securityvulns•added 2006/03/09 12:0 a.m.•30 views

[SA19157] Cilem Haber "haber_id" SQL Injection Vulnerability

TITLE: Cilem Haber "haberid" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA19157 VERIFY ADVISORY: http://secunia.com/advisories/19157/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: Cilem Haber 1.x http://secunia.com/product/8605/ DESCRIPTION: Mustafa...

0.4AI score

Exploits0

Prion•added 2006/03/07 12:2 a.m.•22 views

Design/Logic Flaw

Argument injection vulnerability in certain PHP 3.x, 4.x, and 5.x applications, when used with sendmail and when accepting remote input for the additionalparameters argument to the mail function, allows remote attackers to read and create arbitrary files via the sendmail -C and -X arguments. NOTE...

6.4CVSS7.1AI score0.11078EPSS

Exploits0References5Affected Software1

NVD•added 2006/03/07 12:2 a.m.•14 views

CVE-2006-1015

6.4CVSS6.9AI score0.11078EPSS

Exploits0References5

Cvelist•added 2006/03/07 12:0 a.m.•18 views

CVE-2006-1015

6.8AI score0.11078EPSS

Exploits0References5

securityvulns•added 2005/12/30 12:0 a.m.•23 views

[SA18155] GFHost / GmailSite "lng" Local File Inclusion Vulnerability

TITLE: GFHost / GmailSite "lng" Local File Inclusion Vulnerability SECUNIA ADVISORY ID: SA18155 VERIFY ADVISORY: http://secunia.com/advisories/18155/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: GmailSite 1.x http://secunia.com/product/6704/...

0.7AI score

Exploits0

securityvulns•added 2005/11/21 12:0 a.m.•111 views

[SA17652] e-Quick Cart SQL Injection Vulnerabilities

TITLE: e-Quick Cart SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA17652 VERIFY ADVISORY: http://secunia.com/advisories/17652/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: e-Quick Cart http://secunia.com/product/6165/ DESCRIPTION: BiPiHaCk has...

0.7AI score

Exploits0

exploitpack•added 2005/04/27 12:0 a.m.•10 views

Claroline E-Learning 1.51.6 - userInfo.php Multiple SQL Injections

Claroline E-Learning 1.51.6 - userInfo.php Multiple SQL Injections source: https://www.securityfocus.com/bid/13407/info Multiple remote input validation vulnerabilities affect Claroline e-Learning Application. These issues are due to a failure of the application to properly sanitize user-supplied...

0.6AI score

Exploits0

Exploit DB•added 2005/04/27 12:0 a.m.•46 views

PHPCart - Input Validation

source: https://www.securityfocus.com/bid/13406/info PHPCart is prone to a remote input validation vulnerability. The issue exists because the software fails to sufficiently sanitize URI parameter data that is employed when computing product charges. A remote attacker may exploit this issue to...

7AI score

Exploits0

FreeBSD•added 2005/04/16 12:0 a.m.•19 views

axel -- remote buffer overflow

A Debian Security Advisory reports: Ulf Härnhammar from the Debian Security Audit Project discovered a buffer overflow in axel, a light download accelerator. When reading remote input the program did not check if a part of the input can overflow a buffer and maybe trigger the execution of arbitra...

7.5CVSS7.2AI score0.03442EPSS

Exploits0References1

OSV•added 2005/04/13 12:0 a.m.•17 views

DSA-706-1 axel - buffer overflow

Bulletin has no description...

7.5CVSS6.3AI score0.03442EPSS

Exploits0

Exploit DB•added 2005/04/04 12:0 a.m.•30 views

SonicWALL SOHO 5.1.7 - Web Interface Multiple Remote Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/12984/info Multiple remote input validation vulnerabilities affect SonicWALL SOHO. These issues are due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web content. Specifically a...

7.4AI score

Exploits0

exploitpack•added 2005/03/29 12:0 a.m.•8 views

phpCoin 1.2 - auxpage.php?page Traversal Arbitrary File Access

phpCoin 1.2 - auxpage.php?page Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/12917/info Multiple remote input validation vulnerabilities affect phpCoin. Multiple SQL injection vulnerabilities have been reported. An attacker may leverage these issues to manipulate and...

0.1AI score

Exploits0

Exploit DB•added 2005/03/29 12:0 a.m.•20 views

phpCoin 1.2 - 'auxpage.php?page' Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/12917/info Multiple remote input validation vulnerabilities affect phpCoin. Multiple SQL injection vulnerabilities have been reported. An attacker may leverage these issues to manipulate and view arbitrary database contents. phpCoin is also affected by a...

7.4AI score

Exploits0

exploitpack•added 2005/02/24 12:0 a.m.•15 views

PunBB 3.03.1 - Multiple Remote Input Validation Vulnerabilities

PunBB 3.03.1 - Multiple Remote Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/12652/info Multiple remote input validation vulnerabilities affect PunBB. These issues are due to a failure of the application to sanitize user-supplied input prior to using it to carry out...

0.7AI score

Exploits0

Tenable Nessus•added 2005/01/19 12:0 a.m.•16 views

CMSimple < 2.4 Beta 5 Multiple Remote Input Validation Vulnerabilities

Binary data 2544.prm...

7.3AI score

Exploits0

exploitpack•added 2004/10/16 12:0 a.m.•11 views

CoolPHP 1.0 - Multiple Remote Input Validation Vulnerabilities

CoolPHP 1.0 - Multiple Remote Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/11437/info Reportedly CoolPHP is affected by multiple remote input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied input pri...

0.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by