Lucene search
+L

1195 matches found

Prion
Prion
added 2008/05/08 4:20 p.m.12 views

Sql injection

SQL injection vulnerability in emall/search.php in Pre Shopping Mall 1.1 allows remote attackers to execute arbitrary SQL commands via the search parameter...

7.5CVSS9.1AI score0.00967EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/05/08 4:0 p.m.23 views

CVE-2008-2114

SQL injection vulnerability in emall/search.php in Pre Shopping Mall 1.1 allows remote attackers to execute arbitrary SQL commands via the search parameter...

8.4AI score0.00967EPSS
Exploits1References3
Cvelist
Cvelist
added 2008/04/27 9:0 p.m.18 views

CVE-2008-1987

Cross-site scripting XSS vulnerability in search.php in EncapsGallery 2.0.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

5.7AI score0.01033EPSS
Exploits0References4
Prion
Prion
added 2008/04/25 7:5 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in cgi-bin/contray/search.cgi in ContRay 3.x allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.01022EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2008/04/25 7:5 p.m.14 views

CVE-2008-1960

Cross-site scripting XSS vulnerability in cgi-bin/contray/search.cgi in ContRay 3.x allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.6AI score0.01022EPSS
Exploits0References3
xssed
xssed
added 2008/04/10 12:0 a.m.12 views

Unfixed XSS vulnerability at www.highbeam.com

Security researcher skathgh420, has submitted on 04/10/2008 a cross-site-scripting XSS vulnerability affecting www.highbeam.com, which at the time of submission ranked 5842 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/10/2008. It is...

6.6AI score
Exploits0References1
Prion
Prion
added 2008/03/24 9:44 p.m.16 views

Sql injection

Multiple SQL injection vulnerabilities in Gallarific Free Edition 1.1 allow remote attackers to execute arbitrary SQL commands via the 1 query parameter to a search.php; 2 gusername and 3 gpassword parameters to b login.php; and the 4 username and 5 password parameters to c gadmin/index.php in a...

7.5CVSS9.1AI score0.01013EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2008/02/12 2:0 a.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Pagetool 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter in a pagetoolsearch action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

4.3CVSS6AI score0.01208EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2008/02/12 1:0 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in Crux Software CruxCMS 3.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.01196EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2008/02/12 1:0 a.m.20 views

CVE-2008-0679

Cross-site scripting XSS vulnerability in index.php in BlogPHP 2.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS5.6AI score0.01507EPSS
Exploits0References3
Prion
Prion
added 2008/02/12 1:0 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in BlogPHP 2.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS5.9AI score0.01507EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2008/02/12 1:0 a.m.17 views

CVE-2008-0720

Cross-site scripting XSS vulnerability in Webmin 1.370 and 1.390 and Usermin 1.300 and 1.320 allows remote attackers to inject arbitrary web script or HTML via the search parameter to webminsearch.cgi aka the search section, and possibly other components accessed through a "search box" or "open...

5.9AI score0.01223EPSS
Exploits0References6
CVE
CVE
added 2008/02/12 12:0 a.m.44 views

CVE-2008-0700

Affected software: Crux Software CruxCMS 3.0 (CruxCMS). Issue: Cross-site Scripting (XSS) in search.php via the search parameter, enabling remote injection of arbitrary web script/HTML and potential script execution in a user’s browser. Underlying cause: input sanitation error in the search param...

4.3CVSS5.6AI score0.01196EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2008/02/12 12:0 a.m.23 views

CVE-2008-0679

Cross-site scripting XSS vulnerability in index.php in BlogPHP 2.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

5.6AI score0.01507EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2008/02/01 8:0 p.m.3 views

CVE-2007-6696

Multiple cross-site scripting XSS vulnerabilities in WebCalendar 1.1.6 allow remote attackers to inject arbitrary web script or HTML via 1 an event description, 2 the query string to pref.php, and 3 the adv parameter to search.php. NOTE: vector 1 requires user authentication...

2.1CVSS5.4AI score0.01732EPSS
Exploits1References6
NVD
NVD
added 2008/02/01 8:0 p.m.19 views

CVE-2007-6696

Multiple cross-site scripting XSS vulnerabilities in WebCalendar 1.1.6 allow remote attackers to inject arbitrary web script or HTML via 1 an event description, 2 the query string to pref.php, and 3 the adv parameter to search.php. NOTE: vector 1 requires user authentication...

2.1CVSS5.8AI score0.01732EPSS
Exploits1References5
Cvelist
Cvelist
added 2008/01/03 11:0 p.m.21 views

CVE-2007-6616

Cross-site scripting XSS vulnerability in simpleforum.cgi in SimpleForum 4.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchkey parameter in a search action. NOTE: some of these details are obtained from third party information...

5.7AI score0.01065EPSS
Exploits0References5
Prion
Prion
added 2007/12/17 6:46 p.m.15 views

Sql injection

SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI...

7.5CVSS9.1AI score0.01018EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2007/12/17 6:46 p.m.10 views

CVE-2007-6392

SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI...

7.5CVSS8.4AI score0.01018EPSS
Exploits1References5
Cvelist
Cvelist
added 2007/12/17 6:0 p.m.18 views

CVE-2007-6392

SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI...

8.4AI score0.01018EPSS
Exploits1References5
Rows per page
Query Builder