Cyberfox security vulnerabilities

Cyberfox is a third-party browser developed by the American company Cyberfox. The version 52.9.1 of Cyberfox contains a security vulnerability, which stems from a buffer overflow in the search bar, potentially leading to a denial-of-service attack...

CVE-2026-22195

GestSup versions prior to 3.2.60 contain a SQL injection vulnerability in the search bar functionality. User-controlled search input is incorporated into SQL queries without sufficient neutralization, allowing an authenticated attacker to manipulate database queries. Successful exploitation can...

CVE-2026-22195

GestSup versions prior to 3.2.60 contain a SQL injection vulnerability in the search bar functionality. User-controlled search input is incorporated into SQL queries without sufficient neutralization, allowing an authenticated attacker to manipulate database queries. Successful exploitation can...

EUVD-2019-16972

Malware in sbrugna...

starcitizentools/citizen-skin is vulnerable to Stored XSS attack in the legacy search bar through page descriptions

Summary Page descriptions are inserted into raw HTML without proper sanitization by the Citizen skin when using the old search bar. Details The descriptions, which are unsanitized, are inserted as raw HTML:...

CVE-2020-27478

Cross Site Scripting vulnerability found in Simplcommerce v.40734964b0811f3cbaf64b6dac261683d256f961 thru 3103357200c70b4767986544e01b19dbf11505a7 allows a remote attacker to execute arbitrary code via a crafted script to the search bar feature...

CVE-2024-13199

CVE-2024-13199 affects langhsu Mblog Blog System 3.5.0. The vulnerability resides in the /search endpoint of the Search Bar component, where manipulating the kw argument triggers a cross-site scripting (XSS) vulnerability. The issue can be exploited remotely, and public disclosure has occurred. M...

Concept Intermedia S@M CMS Security Vulnerability

Concept Intermedia S@M CMS is a content management system from Concept Intermedia, Inc. A security vulnerability exists in Concept Intermedia S@M CMS version 3.3 and prior versions, which stems from a blind SQL injection attack executed via the search bar...

PT-2024-27894 · Concept Intermedia · S@M Cms

Name of the Vulnerable Software and Affected Versions: S@M CMS Concept Intermedia affected versions not specified Description: The issue concerns a blind SQL Injection that can be executed using the search bar in sites managed by S@M CMS. It is noted that only a part of the observed services is...

CVE-2022-38291

SLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting XSS vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar...

Online-Catering-Reservation 跨站脚本漏洞

A code injection vulnerability exists in Online-Catering-Reservation, an online catering reservation system. The vulnerability stems from a cross-site scripting XSS vulnerability in Online-Catering-Reservation, which allows an attacker to search bar...

CVE-2019-7430

PHP Scripts Mall Image Sharing Script 1.3.4 has HTML injection via the Search Bar...

Design/Logic Flaw

PHP Scripts Mall Image Sharing Script 1.3.4 has HTML injection via the Search Bar...

Cross site scripting

PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar...

[SA14712] Maxthon "m2_search_text" Search Bar Exposure of Information

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Maxthon "m2searchtext" Search Bar Exposure of...

Maxthon Web Browser 1.2 - Search Bar Information Disclosure

source: https://www.securityfocus.com/bid/12898/info Maxthon Web Browser is reported prone to an information disclosure vulnerability. This issue may allow an attacker to disclose search bar contents from an affected browser. Information disclosed through the exploitation of this vulnerability ma...