CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6238 matches found

Exploit DB•added 2002/11/25 12:0 a.m.•25 views

Working Resources BadBlue 1.7.1 - Search Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/6253/info The ext.dll ISAPI does not sufficiently sanitize user-supplied input when processing search queries. This may allow an attacker to create a custom URL containing script code that, when viewed in a browser by a legitimate user, will result in the...

exploitpack•added 2002/10/18 12:0 a.m.•22 views

YaBB 1.401.41 - Login Cross-Site Scripting

YaBB 1.401.41 - Login Cross-Site Scripting source: https://www.securityfocus.com/bid/6004/info A cross-site scripting vulnerability has been reported in the YaBB Yet Another Bulletin Board forum login script. HTML tags or script code are not sanitized from the error output of erroneous login...

Exploit DB•added 2002/10/18 12:0 a.m.•53 views

YaBB 1.40/1.41 - Login Cross-Site Scripting

source: https://www.securityfocus.com/bid/6004/info A cross-site scripting vulnerability has been reported in the YaBB Yet Another Bulletin Board forum login script. HTML tags or script code are not sanitized from the error output of erroneous login attempts. As a result, it is possible for a...

exploitpack•added 2002/10/10 12:0 a.m.•20 views

PHPReactor 1.2.7 pl1 - browse.php Cross-Site Scripting

PHPReactor 1.2.7 pl1 - browse.php Cross-Site Scripting source: https://www.securityfocus.com/bid/5939/info phpReactor is prone to cross-site scripting attacks. An attacker may create a malicious link to a phpReactor site which contains malicious HTML and script code. If this link is visited by a...

Debian•added 2002/10/08 7:58 p.m.•13 views

[SECURITY] [DSA 169-1] New ht://Check packages fix cross site scripting problem

-------------------------------------------------------------------------- Debian Security Advisory DSA 169-1 [email protected] http://www.debian.org/security/ Martin Schulze September 25th, 2002 http://www.debian.org/security/faq -...

NVD•added 2002/10/04 4:0 a.m.•13 views

CVE-2002-0944

Cross-site scripting vulnerability in DeepMetrix LiveStats 5.03 through 6.2.1 allows remote attackers to execute arbitrary script as the LiveStats user via the 1 user-agent or 2 referrer, which are not filtered by the stats program...

7.5CVSS7AI score0.01588EPSS

Exploits0References4

exploitpack•added 2002/09/26 12:0 a.m.•21 views

PostNuke 0.72 - modules.php Cross-Site Scripting

PostNuke 0.72 - modules.php Cross-Site Scripting source: https://www.securityfocus.com/bid/5809/info A cross site scripting vulnerability has been reported for PostNuke. An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link. Attacker-supplied HTML and...

securityvulns•added 2002/09/10 12:0 a.m.•37 views

phpGB: cross site scripting bug

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ppp-design found the following cross-site-scripting-bug in phpGB: Details - ------- Product: phpGB Affected Version: 1.10 and maybe all versions before Immune Version: 1.20 OS affected: all OS with php Vendor-URL: http://www.walzl.net Vendor-Status:...

Debian CVE•added 2002/08/31 4:0 a.m.•15 views

CVE-2002-1037

Cross-site scripting vulnerability in Double Choco Latte DCL before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the 1 Ticket Find, 2 Priorities, 3 Severities, 4 Projects, 5 WO Find, 6 Departments and 7 Users features...

5CVSS6.3AI score0.01864EPSS

securityvulns•added 2002/08/20 12:0 a.m.•24 views

NOVL-2002-2963297 - NetBasic Buffer Overflow + Scripting Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 For Immediate Disclosure ============================== Summary ============================== Security Alert: NOVL-2002-2963297 Title: NetBasic Buffer Overflow + Scripting Vulnerability Date: 20-Aug-2002 Revision: Original Security Alert Product Name...

Exploit DB•added 2002/08/12 12:0 a.m.•30 views

W3C CERN HTTPd 3.0 Proxy - Cross-Site Scripting

source: https://www.securityfocus.com/bid/5447/info CERN httpd is a freely available HTTP server and HTTP proxy server available from the W3C. The httpd Proxy is vulnerable to a cross site scripting attack. The condition is present because of the way URLS are displayed in error messages. It is...

exploitpack•added 2002/08/06 12:0 a.m.•16 views

Mozilla 1.01.1 - FTP View Cross-Site Scripting

Mozilla 1.01.1 - FTP View Cross-Site Scripting source: https://www.securityfocus.com/bid/5403/info A cross-site scripting vulnerability in Mozilla has been reported. When viewing the contents of a FTP site as web content from a ftp:// URL, the directory name is included in the HTML representation...

exploitpack•added 2002/07/24 12:0 a.m.•12 views

GNU Mailman 2.0.x - Admin Login Variant Cross-Site Scripting

GNU Mailman 2.0.x - Admin Login Variant Cross-Site Scripting source: https://www.securityfocus.com/bid/5299/info GNU Mailman is prone to a cross-site scripting vulnerability. An attacker may construct a malicious link to the administrative login page, which contains arbitrary HTML and script code...

NVD•added 2002/07/23 4:0 a.m.•16 views

CVE-2002-0682

Cross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script as other web users via script in a URL with the /servlet/ mapping, which does not filter the script when an exception is thrown by the servlet...

7.5CVSS6.5AI score0.12237EPSS

Exploits0References8

exploitpack•added 2002/07/17 12:0 a.m.•10 views

PHP-Wiki 1.21.3 - Cross-Site Scripting

PHP-Wiki 1.21.3 - Cross-Site Scripting source: https://www.securityfocus.com/bid/5254/info PHP-Wiki does not sufficiently sanitize HTML from URI parameters, making it prone to cross-site scripting attacks. An attacker may exploit this condition by enticing users to visit a malicious link which...

RedHat Linux•added 2002/07/12 10:59 p.m.•3 views

Important: Red Hat Security Advisory: mailman security update

Updated mailman packages are now available for Red Hat Linux Advanced Server. These updates resolve a cross-site scripting vulnerability present in versions of Mailman prior to 2.0.11. Two cross-site scripting vulnerabilities have been discovered in versions of Mailman prior to version 2.0.11...

7.5CVSS5.6AI score0.06302EPSS

Exploits0References2

exploitpack•added 2002/07/11 12:0 a.m.•19 views

Summit Computer Networks Lil HTTP Server 2.12.2 - pbcgi.cgi Cross-Site Scripting

Summit Computer Networks Lil HTTP Server 2.12.2 - pbcgi.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/5211/info Lil' HTTP server is a web server application for Windows environments and is maintained by Summit Computer Networks. It is possible for attackers to construct a URL...

securityvulns•added 2002/07/02 12:0 a.m.•28 views

CSS in blackboard

Product: Blackboard 5 Vendor: Blackboard inc Website: www.Blackboard.com Reported: 24 apr 2002: Discovered CSS in blackboard program and company.blackboard.com. Reported CSS in blackboard program at http://company.blackboard.com/contactus/Suggestions.cgi. Reported CSS in company.blackboard.com to...

Exploit DB•added 2002/07/01 12:0 a.m.•30 views

BBC Education Betsie 1.5 - Parserl.pl Cross-Site Scripting

source: https://www.securityfocus.com/bid/5135/info Betsie BBC Education Text to Speech Internet Enhancer is prone to a cross-site scripting vulnerability. This issue exists in the parserl.pl script. Attackers may exploit this condition via a malicious link to a site running the vulnerable...

RedHat Linux•added 2002/06/10 8:28 p.m.•6 views

Important: Red Hat Security Advisory: : Updated mailman packages available

Updated mailman packages are now available for Red Hat Linux 7.2 and 7.3. These updates resolve a cross-site scripting vulnerability present in versions of Mailman prior to 2.0.11. Two cross-site scripting vulnerabilities have been discovered in versions of Mailman prior to version 2.0.11...

7.5CVSS5.6AI score0.06302EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by