Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1225 matches found

Circl
Circladded 2018/05/29 3:50 p.m.4 views

CVE-2013-10032

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/getsimplecmsuploadexec.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

8.8CVSS5.7AI score0.02318EPSS
Exploits1References1
Circl
Circladded 2018/05/29 3:50 p.m.3 views

CVE-2013-10037

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/webtesterexec.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

9.3CVSS5.7AI score0.09857EPSS
Exploits0References1
Circl
Circladded 2018/05/29 3:50 p.m.2 views

CVE-2013-10033

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/kimaisqli.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

9.3CVSS5.1AI score0.01209EPSS
Exploits0References1
Circl
Circladded 2018/05/29 3:50 p.m.3 views

CVE-2013-10053

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/zpanelusernameexec.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

8.7CVSS5.7AI score0.01034EPSS
Exploits0References1
Circl
Circladded 2018/05/29 3:50 p.m.3 views

CVE-2012-10045

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/xodafileupload.rb 2025-10-23 21:12:56+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

9.3CVSS5.7AI score0.01064EPSS
Exploits0References1
CNVD
CNVDadded 2018/05/28 12:0 a.m.3 views

IBM Tivoli Application Dependency Discovery Manager Information Disclosure Vulnerability (CNVD-2018-10544)

IBM Tivoli Application Dependency Discovery Manager TADDM is a product in a suite of IT service management solutions from IBM USA that provides robust automated application mapping and discovery to help administrators understand the structure, state, configuration and change history of business...

5.3CVSS6.7AI score0.01994EPSS
Exploits0References1
Prion
Prionadded 2018/05/24 9:29 p.m.19 views

Information disclosure

The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happyaxis.jsp. IBM X-Force ID: 84354...

5CVSS6.2AI score0.01994EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2018/05/24 9:29 p.m.15 views

CVE-2013-3018

The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happyaxis.jsp. IBM X-Force ID: 84354...

5.3CVSS4.9AI score0.01994EPSS
Exploits0References2
CVE
CVEadded 2018/05/24 9:0 p.m.48 views

CVE-2013-3018

The CVE-2013-3018 issue affects IBM Tivoli Application Dependency Discovery Manager (TADDM) where the AXIS webapp under deploy-tomcat/axis exposes TADDM configuration information without authentication (happyaxis.jsp) in TADDM versions 7.1.2 and 7.2.0–7.2.1.4. A remediation is available: upgrade ...

5.3CVSS4.9AI score0.01994EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2018/05/24 12:0 a.m.30 views

CVE-2013-3018

The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happyaxis.jsp. IBM X-Force ID: 84354. Recent assessment...

5.3CVSS1.2AI score0.01994EPSS
Exploits0References3
Packet Storm
Packet Stormadded 2018/05/22 12:0 a.m.17 views

QNAP PhotoStation Cross Site Scripting

Exploit QNAP PhotoStation 5.x Cross-Site Scripting Date: 5/22/2018 Exploit Author: SaeedReza Zamanian Software Link: https://www.qnap.com/en/appcenter/conshow.php?op=showone&internalName=PhotoStation&version=5.7.0&down1name=TS-251&jumpwin=1&qts=4.3.4&seq=120 Vendor Home Page: https://www.qnap.com...

7.4AI score
Exploits0
Kitploit
Kitploitadded 2018/05/15 2:0 p.m.232 views

OWASP Juice Shop - An Intentionally Insecure Webapp For Security Trainings Written Entirely In Javascript

OWASP Juice Shop is an intentionally insecure web application written entirely in JavaScript which encompasses the entire range of OWASP Top Ten and other severe security flaws. For a detailed introduction, full list of features and architecture overview please visit the official project page:...

7AI score
Exploits0References38
Prion
Prionadded 2018/04/20 9:29 p.m.15 views

Authentication flaw

The ActiveMQ admin user interface in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allows remote attackers to bypass authentication by leveraging knowledge of the port number and webapp path. IBM X-Force ID: 92259...

4.3CVSS7AI score0.02431EPSS
Exploits0References2Affected Software2
Openbugbounty
Openbugbountyadded 2018/04/07 8:22 p.m.10 views

welltang.com XSS vulnerability

Open Bug Bounty ID: OBB-598556 Description| Value ---|--- Affected Website:| welltang.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
0day.today
0day.todayadded 2018/04/02 12:0 a.m.46 views

Frog CMS 0.9.5 - Cross-Site Request Forgery (Add User) Vulnerability

Exploit for php platform in category web applications Exploit Title:​​ Cross Site Request Forgery- Frog CMS Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://github.com/philippe/FrogCMS Version: 0.9.5 CVE :...

8.7AI score0.02354EPSS
Exploits5
exploitpack
exploitpackadded 2018/04/02 12:0 a.m.33 views

Frog CMS 0.9.5 - Cross-Site Request Forgery (Add User)

Frog CMS 0.9.5 - Cross-Site Request Forgery Add User Exploit Title:​​ Cross Site Request Forgery- Frog CMS Date: 31-03-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://github.com/philippe/FrogCMS Versio...

6.8CVSS0.8AI score0.02354EPSS
Exploits5
Exploit DB
Exploit DBadded 2018/04/02 12:0 a.m.42 views

Frog CMS 0.9.5 - Cross-Site Request Forgery (Add User)

Exploit Title:​​ Cross Site Request Forgery- Frog CMS Date: 31-03-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://github.com/philippe/FrogCMS Version: 0.9.5 CVE : CVE-2018-8908 Category: Webapp CMS 1...

8.8CVSS7AI score0.02354EPSS
Exploits5
Packet Storm
Packet Stormadded 2018/03/31 12:0 a.m.41 views

Frog CMS 0.9.5 Cross Site Request Forgery

Exploit Title:aa Cross Site Request Forgery- Frog CMS Date: 31-03-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://github.com/philippe/FrogCMS Version: 0.9.5 CVE : CVE-2018-8908 Category: Webapp CMS 1...

8.7AI score0.02354EPSS
Exploits5
ATTACKERKB
ATTACKERKBadded 2018/03/30 4:29 p.m.1 views

CVE-2018-9147

Cross-site scripting XSS vulnerabilities in version 7.5.7 of Gespage software allow remote attackers to inject arbitrary web script or HTML via the email, passwd, and repasswd parameters to webapp/users/userreg.jsp...

6.1CVSS5.7AI score0.00772EPSS
Exploits0References3
Packet Storm
Packet Stormadded 2018/03/28 12:0 a.m.37 views

Open-AuditIT Professional 2.1 Cross Site Scripting

Exploit Title: Open-AuditIT Professional 2.1 - Stored Cross site scripting XSS Date: 27-03-2018 Exploit Author: Nilesh Sapariya Contact: https://twitter.com/nileshloganx Website: https://nileshsapariya.blogspot.com Vendor Homepage: https://www.open-audit.org/ Version: 2.1 CVE : CVE-2018-8903...

5.6AI score0.01643EPSS
Exploits5
Rows per page
Query Builder