Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5286 matches found

OpenVAS
OpenVASadded 2011/01/10 12:0 a.m.12 views

openSite 'db_driver' Parameter Multiple Local File Include Vulnerabilities

openSite is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. Thi...

0.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2011/01/10 12:0 a.m.28 views

Hewlett-Packard OpenView Network Node Manager nnmRptConfig.exe schdParams/nameParams Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the nnmRptConfig.exe module exposed by the webserver that listens by default o...

10CVSS4.5AI score0.7166EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiativeadded 2011/01/10 12:0 a.m.34 views

Hewlett-Packard Network Node Manager OVutil.dll Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The flaw exists within the ovutil.dll component which is loaded by the webserver listeni...

10CVSS3.3AI score0.17101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2011/01/10 12:0 a.m.34 views

Hewlett-Packard OpenView Network Node Manager nnmRptConfig.exe data_select1 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the nnmRptConfig.exe module exposed by the webserver that listens by default o...

10CVSS5AI score0.16546EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2011/01/10 12:0 a.m.28 views

Hewlett-Packard OpenView Network Node Manager nnmRptConfig.exe Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within nnmRptConfig.exe CGI which is exposed by the webserver which listens by defaul...

10CVSS4.4AI score0.1631EPSS
Exploits0References1
OpenVAS
OpenVASadded 2011/01/07 12:0 a.m.9 views

Ignition 'comment.php' Local File Include Vulnerability

Ignition is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This may allow...

0.5AI score
Exploits0References3
Exploit DB
Exploit DBadded 2011/01/05 12:0 a.m.34 views

BlogEngine.NET 1.6 - Directory Traversal / Information Disclosure

source: https://www.securityfocus.com/bid/45681/info BlogEngine.NET is prone to a directory-traversal vulnerability and an information-disclosure vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting the issues may allow an attacker to obtain sensiti...

7AI score
Exploits0
exploitpack
exploitpackadded 2011/01/05 12:0 a.m.12 views

BlogEngine.NET 1.6 - Directory Traversal Information Disclosure

BlogEngine.NET 1.6 - Directory Traversal Information Disclosure source: https://www.securityfocus.com/bid/45681/info BlogEngine.NET is prone to a directory-traversal vulnerability and an information-disclosure vulnerability because the application fails to sufficiently sanitize user-supplied inpu...

7.2AI score
Exploits0
OpenVAS
OpenVASadded 2011/01/05 12:0 a.m.11 views

Sahana Agasti Multiple Remote File Include Vulnerabilities

Sahana Agasti is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

7.5AI score
Exploits0References3
OpenVAS
OpenVASadded 2011/01/05 12:0 a.m.14 views

Sahana Agasti Multiple Remote File Include Vulnerabilities

Sahana Agasti is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to execute arbitrary script code in the context of the webserve...

0.3AI score
Exploits0References3
OpenVAS
OpenVASadded 2011/01/04 12:0 a.m.8 views

Calibre Cross Site Scripting and Directory Traversal Vulnerabilities

Calibre is prone to a cross-site scripting vulnerability and a directory- traversal vulnerability because it fails to sufficiently sanitize user- supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context o...

6.8AI score
Exploits0References3
OpenVAS
OpenVASadded 2011/01/03 12:0 a.m.8 views

Ignition Multiple Local File Include and Remote Code Execution Vulnerabilities

Ignition is prone to multiple local file-include vulnerabilities and a remote code execution vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information and to execute arbitrary local scripts an...

0.6AI score
Exploits0References2
OpenVAS
OpenVASadded 2010/12/31 12:0 a.m.38 views

Mongoose Webserver Content-Length Denial of Service Vulnerability

This host is running Mongoose Webserver and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodmongoosewebsrvcntlendosvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Mongoose Webserver Content-Length Denial of Service Vulnerability Authors: Veerendra GG Copyright:...

0.2AI score
Exploits0References2
Exploit DB
Exploit DBadded 2010/12/24 12:0 a.m.22 views

IBM Tivoli Access Manager 6.1.1 for E-Business - Directory Traversal

source: https://www.securityfocus.com/bid/45582/info IBM Tivoli Access Manager for e-business is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary local files within the contex...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2010/12/24 12:0 a.m.9 views

IBM Tivoli Access Manager 6.1.1 for E-Business - Directory Traversal

IBM Tivoli Access Manager 6.1.1 for E-Business - Directory Traversal source: https://www.securityfocus.com/bid/45582/info IBM Tivoli Access Manager for e-business is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2010/12/21 12:0 a.m.24 views

Calibre 0.7.34 - Cross-Site Scripting / Directory Traversal

source: https://www.securityfocus.com/bid/45532/info Calibre is prone to a cross-site scripting vulnerability and a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in t...

7AI score
Exploits0
exploitpack
exploitpackadded 2010/12/21 12:0 a.m.8 views

Calibre 0.7.34 - Cross-Site Scripting Directory Traversal

Calibre 0.7.34 - Cross-Site Scripting Directory Traversal source: https://www.securityfocus.com/bid/45532/info Calibre is prone to a cross-site scripting vulnerability and a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues wi...

Exploits0
0day.today
0day.todayadded 2010/12/16 12:0 a.m.20 views

MantisBT <=1.2.3 (db_type) Cross-Site Scripting & Path Disclosure

Exploit for php platform in category web applications Vendor: MantisBT Group Product web page: http://www.mantisbt.org Version affected: 1.2.4 Summary: MantisBT is a free popular web-based bugtracking system. It is written in the PHP scripting language and works with MySQL, MS SQL, and PostgreSQL...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2010/12/13 12:0 a.m.19 views

Joomla! Component com_redirect 1.5.19 - Local File Inclusion

source: https://www.securityfocus.com/bid/45364/info The 'comredirect' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2010/12/13 12:0 a.m.9 views

Joomla! Component com_redirect 1.5.19 - Local File Inclusion

Joomla! Component comredirect 1.5.19 - Local File Inclusion source: https://www.securityfocus.com/bid/45364/info The 'comredirect' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...

0.3AI score
Exploits0
Rows per page
Query Builder