Lucene search
K

22 matches found

Cvelist
Cvelist
added 2025/11/17 12:0 a.m.12 views

CVE-2024-44663

PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the product parameter in search-result.php...

0.00215EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.5 views

PHPGurukul Online Discussion Forum SQL注入漏洞

Online Discussion Forum is an online forum. Online Discussion Forum suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Search in the file /admin/adminforum/searchresult.php. An attacker can exploit this...

9.8CVSS8.2AI score0.00384EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/04 12:0 a.m.4 views

PHPGurukul Restaurant Table Booking System 注入漏洞

Restaurant Table Booking System is a restaurant table reservation system. Restaurant Table Booking System suffers from a SQL injection vulnerability that stems from incorrect manipulation of the searchdata parameter in the /search-result.php file that can lead to SQL injection. No details of the...

9.8CVSS7.9AI score0.0054EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/02/23 12:0 a.m.4 views

PHPGurukul Online Shopping Portal 注入漏洞

Online Shopping Portal is an online store system. Online Shopping Portal suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter Product of the file /search-result.php. An attacker can exploit this vulnerability to...

7.5CVSS8.2AI score0.00379EPSS
Exploits1References6
OSV
OSV
added 2024/11/14 6:15 p.m.3 views

CVE-2024-48284

A Reflected Cross-Site Scripting XSS vulnerability was found in the /search-result.php page of the PHPGurukul User Registration & Login and User Management System 3.2. This vulnerability allows remote attackers to execute arbitrary scripts via the searchkey parameter in a POST HTTP request...

4.8CVSS6AI score0.00458EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.5 views

PT-2024-33070 · Unknown · Phpgurukul User Registration & Login/User Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul User Registration & Login and User Management System version 3.2 Description: A Reflected Cross-Site Scripting XSS issue was discovered in the "/search-result.php" page, allowing remote attackers to execute arbitrary scripts via th...

5.4CVSS6.6AI score0.00458EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/10/25 12:0 a.m.10 views

PT-2022-23622 · Algosec · Algosec Fireflow

Name of the Vulnerable Software and Affected Versions: AlgoSec FireFlow affected versions not specified Description: The issue involves a Reflected Cross-Site-Scripting RXSS attack. A malicious user can inject JavaScript code into the IntersectudRule parameter on the "search/result.html" page. By...

6.5CVSS5.4AI score0.00354EPSS
Exploits0References3
OSV
OSV
added 2022/05/23 4:16 p.m.6 views

CVE-2022-29004

Diary Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the Name parameter in search-result.php...

6.1CVSS6.3AI score0.02806EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/05/23 4:16 p.m.5 views

CVE-2022-29004

Diary Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the Name parameter in search-result.php...

6.1CVSS6.3AI score0.02806EPSS
Exploits1References5
Openbugbounty
Openbugbounty
added 2018/09/08 9:24 a.m.9 views

mooretracks.com XSS vulnerability

Open Bug Bounty ID: OBB-674307 Description| Value ---|--- Affected Website:| mooretracks.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/08/18 4:45 a.m.14 views

datakasse.mystore.no XSS vulnerability

Open Bug Bounty ID: OBB-665967 Description| Value ---|--- Affected Website:| datakasse.mystore.no Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/01/27 12:9 a.m.9 views

woodman.com.tw XSS vulnerability

Open Bug Bounty ID: OBB-547837 Description| Value ---|--- Affected Website:| woodman.com.tw Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/11/30 6:58 p.m.12 views

wintone.com.cn XSS vulnerability

Open Bug Bounty ID: OBB-444532 Description| Value ---|--- Affected Website:| wintone.com.cn Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/16 6:55 p.m.13 views

creps-montpellier.org XSS vulnerability

Vulnerable URL: https://www.creps-montpellier.org/search-result?s=+%3Cscript%3Ealert%27OPENBUGBOUNTY%27%3C/script%3E\n Details: Description| Value ---|--- Patched:| No Latest check for patch:| 14.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4423718 VIP...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/10 3:25 p.m.10 views

infrasofttech.com XSS vulnerability

Vulnerable URL: http://www.infrasofttech.com/search-result?txt="" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 08.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 570052 VIP website status:| No Coordinated Disclosure Timeline:...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/06/30 12:51 p.m.18 views

frequence-sud.fr XSS vulnerability

Vulnerable URL: https://www.frequence-sud.fr/recherche/resultat.php?recherche="'/alert/openbugbounty/...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/04/21 9:3 p.m.13 views

baumit.at XSS vulnerability

Vulnerable URL: http://www.baumit.at/suchergebnisse.html?searchterm=%22%3Eblub%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3E= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

6.3AI score
Exploits0
Prion
Prion
added 2017/03/17 9:59 a.m.11 views

Cross site scripting

An XSS vulnerability in the MantisBT Source Integration Plugin before 2.0.2 search result page allows an attacker to inject arbitrary HTML or JavaScript if MantisBT's CSP settings permit it by crafting any valid parameter...

4.3CVSS5.9AI score0.00574EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/03/17 8:55 a.m.23 views

CVE-2017-6958

An XSS vulnerability in the MantisBT Source Integration Plugin before 2.0.2 search result page allows an attacker to inject arbitrary HTML or JavaScript if MantisBT's CSP settings permit it by crafting any valid parameter...

6AI score0.00574EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2016/07/07 3:48 a.m.10 views

ijofo.org XSS vulnerability

Vulnerable URL: http://www.ijofo.org/searchresult.asp?I1.x=0&I1.y;=0=openbug Details: Description| Value ---|--- Patched:| Yes, at 29.07.2016 Latest check for patch:| 29.07.2016 02:39 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP...

6.3AI score
Exploits0
Rows per page
Query Builder