CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5286 matches found

Exploit DB•added 2010/10/27 12:0 a.m.•19 views

W-Agora 4.1.5 - Local File Inclusion / Cross-Site Scripting

source: https://www.securityfocus.com/bid/44507/info W-Agora is prone to multiple local file-include vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to view and execute local...

7.4AI score

Exploits0

exploitpack•added 2010/10/26 12:0 a.m.•13 views

NitroView ESM - ess.pm Remote Command Execution

NitroView ESM - ess.pm Remote Command Execution source: https://www.securityfocus.com/bid/44421/info NitroView ESM is prone to a remote command-execution vulnerability because it fails to adequately sanitize user-supplied input. Successful attacks may allow an attacker to execute arbitrary comman...

0.8AI score

Exploits0

Exploit DB•added 2010/10/26 12:0 a.m.•16 views

NitroView ESM - 'ess.pm' Remote Command Execution

source: https://www.securityfocus.com/bid/44421/info NitroView ESM is prone to a remote command-execution vulnerability because it fails to adequately sanitize user-supplied input. Successful attacks may allow an attacker to execute arbitrary commands on the appliance in the context of the...

7.4AI score

Exploits0

Packet Storm•added 2010/10/25 12:0 a.m.•19 views

MinaliC Webserver 1.0 Directory Traversal

------------------------------------------------------------------------ Software................MinaliC Webserver 1.0 Vulnerability...........Directory Traversal Download................http://sourceforge.net/projects/minalic/ Release Date............10/24/2010 Tested On...............Windows XP...

0.3AI score

Exploits0

Packet Storm•added 2010/10/25 12:0 a.m.•19 views

MinaliC Webserver 1.0 Denial Of Service

------------------------------------------------------------------------ Software................MinaliC Webserver 1.0 Vulnerability...........Denial Of Service Download................http://sourceforge.net/projects/minalic/ Release Date............10/24/2010 Tested On...............Windows XP...

7.4AI score

Exploits0

OpenVAS•added 2010/10/25 12:0 a.m.•26 views

w-Agora 'search.php' Local File Include and Cross Site Scripting Vulnerabilities

w-Agora is prone to a local file-include vulnerability and a cross- site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute local files within the...

7.5CVSS6.1AI score0.02503EPSS

Exploits2References1

exploitpack•added 2010/10/22 12:0 a.m.•9 views

W-Agora 4.2.1 - search.php?bn Cross-Site Scripting

W-Agora 4.2.1 - search.php?bn Cross-Site Scripting source: https://www.securityfocus.com/bid/44370/info w-Agora is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local...

6.8AI score

Exploits0

exploitpack•added 2010/10/22 12:0 a.m.•16 views

W-Agora 4.2.1 - search.php3?bn Traversal Local File Inclusion

W-Agora 4.2.1 - search.php3?bn Traversal Local File Inclusion source: https://www.securityfocus.com/bid/44370/info w-Agora is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the...

7.4AI score

Exploits0

Exploit DB•added 2010/10/22 12:0 a.m.•20 views

W-Agora 4.2.1 - 'search.php?bn' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44370/info w-Agora is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal...

7.4AI score

Exploits0

Exploit DB•added 2010/10/22 12:0 a.m.•52 views

W-Agora 4.2.1 - 'search.php3?bn' Traversal Local File Inclusion

7.4AI score

Exploits0

OpenVAS•added 2010/10/21 12:0 a.m.•10 views

PhreeBooks Multiple Remote Vulnerabilities

PhreeBooks is prone to multiple input-validation vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, or obtain potentially...

0.2AI score

Exploits0References5

htbridge•added 2010/10/21 12:0 a.m.•49 views

Multiple Vulnerabilities in JAF CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in JAF CMS which could be exploited to compromise vulnerable system. 1 Remote code execution in JAF CMS The vulnerability exists due to insufficient sanitation of input data in module/log/vislog.php. A remote attack...

10CVSS7.5AI score0.41114EPSS

Exploits1Affected Software1

Drupal•added 2010/10/20 12:0 a.m.•13 views

SA-CONTRIB-2010-100 - Ubuntu Drupal Theme - Directory traversal and information disclosure

This Ubuntu Drupal Theme - Brown is designed to mimic the old ubuntu.com. The theme used a PHP file to generate a gradient image on the fly. User input from the URL is not properly validated in this PHP code, leading to a directory traversal vulnerability where the contents of any file readable b...

7.1AI score

Exploits0References6

OpenVAS•added 2010/10/13 12:0 a.m.•31 views

BaconMap Local File Include and SQL Injection Vulnerabilities

BaconMap is prone to a local file-include vulnerability and an SQL- injection vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to view and execute arbitrary local files within...

7.5CVSS0.3AI score0.01997EPSS

Exploits2References2

exploitpack•added 2010/10/13 12:0 a.m.•12 views

Joomla! Component Jstore - Controller Local File Inclusion

Joomla! Component Jstore - Controller Local File Inclusion source: https://www.securityfocus.com/bid/44053/info The 'comjstore' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerabilit...

0.4AI score

Exploits0

Exploit DB•added 2010/10/13 12:0 a.m.•30 views

Joomla! Component Jstore - 'Controller' Local File Inclusion

source: https://www.securityfocus.com/bid/44053/info The 'comjstore' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute...

7.4AI score

Exploits0

OpenVAS•added 2010/10/08 12:0 a.m.•257 views

Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability

The host is running Microsoft IIS Webserver and is prone to stack based buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbmsiisbofvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright c 201...

9.3CVSS0.5AI score0.32826EPSS

Exploits1References3

OpenVAS•added 2010/10/08 12:0 a.m.•25 views

LightOpenCMS 'smarty.php' LFI Vulnerability

LightOpenCMS is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may...

9.3CVSS6.5AI score0.03763EPSS

Exploits0References1

OpenVAS•added 2010/10/06 12:0 a.m.•13 views

Uebimiau Webmail 'stage' Parameter Local File Include Vulnerability

Uebimiau Webmail is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...

0.4AI score

Exploits0References2

OpenVAS•added 2010/10/06 12:0 a.m.•16 views

Uebimiau Webmail 'stage' Parameter Local File Include Vulnerability

Uebimiau Webmail is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.1AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by