CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

80 matches found

Japan Vulnerability Notes•added 2014/08/15 12:0 a.m.•55 views

JVN#48039501: Shutter vulnerable to SQL injection

Shutter provided by tenfourzero is a web package allowing users to share their photos. lib/admin.php in Shutter contains a SQL injection vulnerability. Impact If an administrator views a malicious page while logged in, an arbitrary SQL command may be executed. Solution Uninstall the Software...

7.5CVSS7.4AI score0.00318EPSS

Japan Vulnerability Notes•added 2014/08/15 12:0 a.m.•81 views

JVN#04455183: Shutter vulnerable to cross-site scripting

Shutter provided by tenfourzero is a web package allowing users to share their photos. Shutter contains a cross-site scripting vulnerability, which can be exploited through the SQL injection vulnerability JVN48039501. Impact If an administrator views a malicious page while logged in, an arbitrary...

4.3CVSS6.8AI score0.00248EPSS

seebug.org•added 2014/07/01 12:0 a.m.•4576 views

Shutter 0.1.1 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! --...

seebug.org•added 2014/07/01 12:0 a.m.•12 views

tenfourzero.net Shutter 0.1.4 'admin.html' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38849/info tenfourzero.net's Shutter is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

securityvulns•added 2011/05/03 12:0 a.m.•73 views

HTB22967: Multiple SQL Injection in Shutter

Vulnerability ID: HTB22967 Reference: http://www.htbridge.ch/advisory/sqlinjectioninshutter.html Product: Shutter Vendor: http://shutter.tenfourzero.net/ http://shutter.tenfourzero.net/ Vulnerable Version: 0.1.4 Vendor Notification: 19 April 2011 Vulnerability Type: SQL Injection Risk level: High...

htbridge•added 2011/04/19 12:0 a.m.•33 views

SQL Injection Vulnerability in Shutter

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Shutter which could be exploited to perform SQL injection attacks. 1 SQL injection vulnerability in Shutter The vulnerability exists due to input sanitation errors in the "albumID" parameter in index.html. A remote attacker...

7.5CVSS8.5AI score

Exploits0Affected Software1

Packet Storm•added 2010/03/28 12:0 a.m.•147 views

Shutter 0.1.4 Blind SQL Injection

Exploit Title: Shutter 0.1.4 Blind SQL Injection Date: March 18, 2010 Author: Blake Software Link: http://sourceforge.net/projects/shutter-php/files/shutter/v0.1.4/shutter0.1.4.zip/download Version: version 0.1.4 The albumID and photoID parameters are vulnerable to SQL Injection. POC:...

0day.today•added 2010/03/19 12:0 a.m.•50 views

Shutter 0.1.4 Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================== Shutter 0.1.4 Blind SQL Injection Vulnerability =============================================== Exploit Title: Shutter 0.1.4 Blind SQL Injection Date: March 18, 2010 Author: Blake Software...

Exploit DB•added 2010/03/18 12:0 a.m.•23 views

tenfourzero.net Shutter 0.1.4 - 'admin.html' Multiple SQL Injections

source: https://www.securityfocus.com/bid/38849/info tenfourzero.net's Shutter is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

exploitpack•added 2010/03/18 12:0 a.m.•16 views

tenfourzero.net Shutter 0.1.4 - admin.html Multiple SQL Injections

tenfourzero.net Shutter 0.1.4 - admin.html Multiple SQL Injections source: https://www.securityfocus.com/bid/38849/info tenfourzero.net's Shutter is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

NVD•added 2009/05/16 6:30 p.m.•20 views

CVE-2009-1650

Multiple SQL injection vulnerabilities in photos.php in Shutter 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 albumID, 2 tagID, and 3 photoID parameters to index.html...

7.5CVSS8.5AI score0.00377EPSS

Exploits1References4

Prion•added 2009/05/16 6:30 p.m.•11 views

Sql injection

Multiple SQL injection vulnerabilities in photos.php in Shutter 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 albumID, 2 tagID, and 3 photoID parameters to index.html...

7.5CVSS9.3AI score0.00377EPSS

Exploits1References4Affected Software1

CVE•added 2009/05/16 6:0 p.m.•64 views

CVE-2009-1650

CVE-2009-1650 affects Shutter 0.1.1: Multiple SQL injection vulnerabilities in photos.php allow remote attackers to inject SQL via albumID, tagID, or photoID parameters to index.html. CVSS v2 base score 7.5 (HIGH) with partial impact on confidentiality, integrity, and availability. No remediation...

7.5CVSS8.8AI score0.00377EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/05/16 6:0 p.m.•23 views

CVE-2009-1650

Multiple SQL injection vulnerabilities in photos.php in Shutter 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 albumID, 2 tagID, and 3 photoID parameters to index.html...

8.5AI score0.00377EPSS

Exploits1References4

securityvulns•added 2009/05/15 12:0 a.m.•752 views

MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1-->

------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1-- ------------------------------------------------------------- CMS INFORMATION: --WEB: http://shutter.tenfourzero.net/ --DOWNLOAD: http://shutter.tenfourzero.net/ --DEMO:...

Packet Storm•added 2009/05/15 12:0 a.m.•352 views

Shutter 0.1.1 SQL Injection

------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1-- ------------------------------------------------------------- CMS INFORMATION: --WEB: http://shutter.tenfourzero.net/ --DOWNLOAD: http://shutter.tenfourzero.net/ --DEMO:...

seebug.org•added 2009/05/15 12:0 a.m.•2462 views

Shutter 0.1.1 Multiple Remote SQL Injection Vulnerabilities

No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ------------------...

0day.today•added 2009/05/14 12:0 a.m.•88 views

Shutter 0.1.1 Multiple Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications =========================================================== Shutter 0.1.1 Multiple Remote SQL Injection Vulnerabilities ===========================================================...

Exploit DB•added 2009/05/14 12:0 a.m.•415 views

Shutter 0.1.1 - Multiple SQL Injections

|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ Â¡VIVA SPAIN!...Â¡GANAREMOS EL MUNDIAL!...o.O Â¡PROUD TO BE SPANISH! ---------------------------------------------------------------------------------------------- | MULTIPLE SQL...

seebug.org•added 2009/02/21 12:0 a.m.•10 views

Linux/x86 - kill snort

No description provided by source. / x86 linux "snort IDS" shutter shellcode size 151 By nob0dy // find your own reality / / char snortshuttershellcode = "\xeb\x03\x5e\xeb\x05\xe8\xf8\xff\xff" "\xff\x83\xc6\x0d\x31\xc9\xb1\x80\x80" "\x36\x01\x46\xe2\xfa\xea\x18\x2e\x74"...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by