CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

Prion•added 2009/11/30 9:30 p.m.•21 views

Code injection

Multiple static code injection vulnerabilities in the Categories module in CutePHP CuteNews 1.4.6 allow remote authenticated users with application administrative privileges to inject arbitrary PHP code into data/category.db.php via the 1 category and 2 Icon URL fields; or 3 inject arbitrary PHP...

6.5CVSS7.6AI score0.01829EPSS

Exploits1References3Affected Software1

NVD•added 2009/06/22 2:30 p.m.•14 views

CVE-2009-2145

Multiple cross-site scripting XSS vulnerabilities in transLucid 1.75 allow remote attackers to inject arbitrary web script or HTML via the a NodeID and b action parameters to the default URI, and the c NodeID parameter to the default URI for the admin section; and allow remote authenticated users...

4.3CVSS5.5AI score0.02646EPSS

Exploits0References3

Cvelist•added 2009/06/22 2:0 p.m.•21 views

CVE-2009-2145

5.5AI score0.02646EPSS

Exploits0References3

Prion•added 2006/02/01 11:2 p.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote attackers to inject arbitrary web script or HTML via 1 the contactsearch parameter and 2 unspecified url fields...

4.3CVSS6.2AI score0.06618EPSS

Exploits1References7Affected Software1

NVD•added 2006/02/01 11:2 p.m.•17 views

CVE-2006-0509

4.3CVSS6AI score0.06618EPSS

Exploits1References7

Cvelist•added 2006/02/01 11:0 p.m.•20 views

CVE-2006-0509

6AI score0.06618EPSS

Exploits1References7

Rows per page