CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5210 matches found

CVE•added 2011/09/27 10:0 a.m.•34 views

CVE-2010-4843

CVE-2010-4843 targets PHP Web Scripts Ad Manager Pro 3.0, with a SQL injection in website-page.php exploitable via the pageId parameter. The vulnerability permits remote attackers to execute arbitrary SQL commands, with impact on confidentiality, integrity, and availability (C:P/I:P/A:P); CVSS v2...

7.5CVSS8.7AI score0.00469EPSS

Exploits1References5Affected Software1

Cvelist•added 2011/09/27 10:0 a.m.•12 views

CVE-2010-4843

SQL injection vulnerability in website-page.php in PHP Web Scripts Ad Manager Pro 3.0 allows remote attackers to execute arbitrary SQL commands via the pageId parameter...

8.4AI score0.00469EPSS

Exploits1References5

OSV•added 2011/06/14 12:0 a.m.•35 views

DSA-2260-1 rails - several

Bulletin has no description...

5CVSS9.4AI score0.01632EPSS

Exploits1

NVD•added 2011/04/07 2:23 p.m.•13 views

CVE-2010-4783

Multiple cross-site scripting XSS vulnerabilities in index.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magicquotesgpc is disabled, allow remote attackers to inject arbitrary web script or HTML via the 1 siteurl and 2 urlbanner parameters...

2.6CVSS5.9AI score0.0569EPSS

Exploits1References6

NVD•added 2011/04/07 2:23 p.m.•8 views

CVE-2010-4784

Multiple SQL injection vulnerabilities in member.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters...

6.8CVSS8.7AI score0.0187EPSS

Exploits1References7

Prion•added 2011/04/07 2:23 p.m.•14 views

Cross site scripting

2.6CVSS6.2AI score0.0569EPSS

Exploits1References6Affected Software1

CVE•added 2011/04/07 2:0 p.m.•58 views

CVE-2010-4783

The CVE-2010-4783 entry concerns multiple cross-site scripting (XSS) vulnerabilities in index.php of PHP Web Scripts Easy Banner Free 2009.05.18. The root cause described in sources is that with magic_quotes_gpc disabled, an attacker can inject arbitrary web script or HTML via the siteurl and url...

2.6CVSS6AI score0.0569EPSS

Exploits1References6Affected Software1

CVE•added 2011/04/07 2:0 p.m.•42 views

CVE-2010-4784

CVE-2010-4784 describes multiple SQL injection vulnerabilities in the member.php component of PHP Web Scripts Easy Banner Free 2009.05.18. When magic_quotes_gpc is disabled, remote attackers may inject SQL via the (1) username and (2) password parameters. Details on exploitation, affected version...

6.8CVSS9AI score0.0187EPSS

Exploits1References7Affected Software1

Cvelist•added 2011/04/07 2:0 p.m.•16 views

CVE-2010-4784

8.7AI score0.0187EPSS

Exploits1References7

CVE•added 2011/03/15 5:0 p.m.•53 views

CVE-2011-0457

CVE-2011-0457 affects the e107 CMS (versions 0.7.22 and earlier). The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary script/HTML via unspecified vectors. The Red Hat/ENISA/JVN data confirm the issue in e107 prior to 0.7.23 and indicate upgradin...

4.3CVSS5.7AI score0.00254EPSS

Exploits0References3Affected Software1

Cvelist•added 2010/12/01 4:0 p.m.•16 views

CVE-2010-4355

Cross-site scripting XSS vulnerability in DaDaBIK before 4.3 beta2, when the insert or edit feature is enabled, allows remote authenticated users to inject arbitrary web script or HTML via the selectsingle parameter...

5AI score0.00201EPSS

Exploits0References4

securityvulns•added 2010/11/30 12:0 a.m.•235 views

SQL injection and Path Disclosure Auth Bypass in 4images 1.7.X

-----------Summary----------- eVuln ID: 200 Software: "Powered by 4images" Vendor: PHP Web Scripts Version: 4images 1.7.X dork: "Powered by 4images" Critical Level: medium Type: SQL injection and Path Disclosure Status: Unpatched. No reply from developers PoC: Available Solution: Not available...

0.3AI score

Exploits0

Packet Storm•added 2010/11/29 12:0 a.m.•19 views

Easy Banner Free Cross Site Scripting

New eVuln Advisory: URL XSS in Easy Banner Free Summary: http://evuln.com/vulns/148/summary.html Details: http://evuln.com/vulns/148/description.html -----------Summary----------- eVuln ID: EV0148 Software: Easy Banner Free Vendor: PHP Web Scripts Version: 2009.05.18 Critical Level: low Type: Cro...

Exploits0

Packet Storm•added 2010/11/29 12:0 a.m.•17 views

Easy Banner Free SQL Injection

New eVuln Advisory: SQL injection Auth Bypass in Easy Banner Free Summary: http://evuln.com/vulns/147/summary.html Details: http://evuln.com/vulns/147/description.html -----------Summary----------- eVuln ID: EV0147 Software: Easy Banner Free Vendor: PHP Web Scripts Version: 2009.05.18 Critical...

0.4AI score

Exploits0

securityvulns•added 2010/11/28 12:0 a.m.•64 views

[eVuln.com] SQL injection Auth Bypass in Easy Banner Free

0.6AI score

Exploits0

securityvulns•added 2010/11/28 12:0 a.m.•97 views

[eVuln.com] URL XSS in Easy Banner Free

6.1AI score

Exploits0

Packet Storm•added 2010/11/27 12:0 a.m.•22 views

4Images 1.7.x SQL Injection

7.4AI score

Exploits0

OpenVAS•added 2010/08/02 12:0 a.m.•20 views

SimpNews Multiple Vulnerabilities

This host is running SimpNews and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbsimpnewsmultvuln.nasl 7573 2017-10-26 09:18:50Z cfischer $ SimpNews Multiple Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net...

5CVSS0.1AI score0.04088EPSS

Exploits2References4

Prion•added 2010/06/11 6:0 p.m.•16 views

Cross site scripting

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a 1 paste or 2 drag-and-drop operation for a...

4.3CVSS5.7AI score0.00983EPSS

Exploits0References17Affected Software1

0day.today•added 2010/05/17 12:0 a.m.•19 views

Tainos Webdesign (All Scripts) SQL/XSS/HTML Injection Vulnerability

Exploit for php platform in category web applications =================================================================== Tainos Webdesign All Scripts SQL/XSS/HTML Injection Vulnerability =================================================================== Author: CoBRa21 Mail: email protected...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by