CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1672 matches found

NVD•added 2020/08/12 10:15 p.m.•10 views

CVE-2020-17362

search.php in the Nova Lite theme before 1.3.9 for WordPress allows Reflected XSS...

6.1CVSS6.3AI score0.03855EPSS

Exploits1References1

CNVD•added 2020/03/25 12:0 a.m.•1 views

Joomla! com_hdwplayer 'search.php' SQL Injection Vulnerability

Joomla! is an open source content management system CMS. An SQL vulnerability exists in Joomla! comhdwplayer 'search.php'. An attacker can exploit the vulnerability to obtain sensitive information...

7.4AI score

Exploits0References1

exploitpack•added 2020/03/23 12:0 a.m.•149 views

Joomla! com_hdwplayer 4.2 - search.php SQL Injection

Joomla! comhdwplayer 4.2 - search.php SQL Injection Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Date: 2020-03-23 Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link:...

0.2AI score

Exploits0

Packet Storm•added 2020/03/23 12:0 a.m.•199 views

Joomla HDWPlayer 4.2 SQL Injection

Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Date: 2020-03-23 Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link: https://www.hdwplayer.com/download/ Version: 4.2 Tested on: Debian/Nginx/Joomla!...

0.5AI score

Exploits0

Exploit DB•added 2020/03/23 12:0 a.m.•211 views

Joomla! com_hdwplayer 4.2 - 'search.php' SQL Injection

7.4AI score

Exploits0

0day.today•added 2020/03/23 12:0 a.m.•930 views

Joomla com_hdwplayer 4.2 - (search.php) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link: https://www.hdwplayer.com/download/ Version: 4...

7.1AI score

Exploits0

NVD•added 2020/03/12 2:15 p.m.•10 views

CVE-2020-10449

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-search.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00321EPSS

Exploits1References2

Prion•added 2020/03/12 2:15 p.m.•8 views

Cross site scripting

3.5CVSS4.9AI score0.00321EPSS

Exploits1References2Affected Software1

Cvelist•added 2020/03/12 1:4 p.m.•15 views

CVE-2020-10449

5AI score0.00321EPSS

Exploits1References2

NVD•added 2020/02/11 8:15 p.m.•7 views

CVE-2012-1124

SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

9.8CVSS10AI score0.03907EPSS

Exploits1References5

Prion•added 2020/02/11 8:15 p.m.•10 views

Sql injection

SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

7.5CVSS9.1AI score0.03907EPSS

Exploits1References5Affected Software1

Cvelist•added 2020/02/11 8:0 p.m.•11 views

CVE-2012-1124

SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

10AI score0.03907EPSS

Exploits1References5

CVE•added 2020/02/11 8:0 p.m.•34 views

CVE-2012-1124

The CVE-2012-1124 entry concerns a SQL injection vulnerability in the search.php component of phxEventManager 2.0 beta 5, where user-supplied search_terms can be exploited to execute arbitrary SQL commands. According to the connected NVD entry, the flaw enables remote attackers to target the appl...

9.8CVSS9.9AI score0.03907EPSS

Exploits1References5Affected Software1

NVD•added 2019/03/27 5:29 p.m.•8 views

CVE-2017-18364

phpFK lite has XSS via the faq.php, members.php, or search.php query string or the user.php user parameter...

7.4CVSS7.2AI score0.00407EPSS

Exploits2References3

CVE•added 2019/03/27 4:59 p.m.•48 views

CVE-2017-18364

CVE-2017-18364 concerns phpFK lite and is a reflected cross-site scripting (XSS) vulnerability. The affected components are the web interface files faq.php, members.php, search.php (via query strings) and user.php (via the user parameter). The underlying issue is that user-supplied input in these...

7.4CVSS6AI score0.00407EPSS

Exploits2References3Affected Software1

CNVD•added 2019/03/08 12:0 a.m.•1 views

LayerBB SQL Injection Vulnerability

LayerBB is a small set of forum software. A SQL injection vulnerability exists in LayerBB version 1.1.1. A remote attacker can exploit this vulnerability by sending the 'searchquery' parameter to the search.php file to execute SQL commands...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

NVD•added 2019/03/07 11:29 p.m.•8 views

CVE-2018-17988

LayerBB 1.1.1 and 1.1.3 has SQL Injection via the search.php searchquery parameter...

9.8CVSS10AI score0.00307EPSS

Exploits1References2