Lucene search
K

498 matches found

Exploit DB
Exploit DB
added 2009/10/21 12:0 a.m.18 views

OpenDocMan 1.2.5 - 'user.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/16 12:0 a.m.17 views

PHPLive! 3.2.2 - 'request.php' SQL Injection

source: https://www.securityfocus.com/bid/35718/info PHPLive! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

7.4AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/05/11 12:0 a.m.34 views

JVN#03114223 SQL injection vulnerability in SKIP from SKIP User Group

SKIP from SKIP User Group is an open source SNS Social Networking Service software. SKIP contains a SQL injection vulnerability. Impact Contents created by SKIP can be altered or information saved by SKIP can be obtained by a user that can login to SKIP. Solution Update the software Update to the...

7.5CVSS7AI score0.01258EPSS
Exploits0
0day.today
0day.today
added 2008/12/01 12:0 a.m.20 views

z1exchange 1.0 (edit.php site) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================= z1exchange 1.0 edit.php site Remote SQL Injection Vulnerability =================================================================...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/05/26 12:0 a.m.7 views

ClassSystem 2.02.3 - HomepageTop.php?teacher_id SQL Injection

ClassSystem 2.02.3 - HomepageTop.php?teacherid SQL Injection source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/25 12:0 a.m.29 views

Clever Copy 3.0 - 'postview.php' SQL Injection Vulnerability

Clever Copy 3.0 'postview.php' SQL Injection Vulnerability. CVE-2008-1608. Webapps exploit for php platform source: http://www.securityfocus.com/bid/28437/info Clever Copy is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an...

7.5CVSS0.1AI score0.01132EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2007/08/08 12:0 a.m.4 views

PT-2007-5375 · Pluck · Pluck

Name of the Vulnerable Software and Affected Versions: Pluck version 4.3 Description: The issue allows remote attackers to potentially read arbitrary local files via a .. dot dot in the file parameter in the data/inc/theme.php file when register globals is enabled. However, it's noted that the co...

5CVSS6.8AI score0.01479EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2007/01/24 12:0 a.m.9 views

security flaw

Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 5 and earlier, Java System Development Kit SDK and JRE 1.4.210 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...

4.3CVSS5.8AI score0.02311EPSS
Exploits0References4
NVD
NVD
added 2006/12/26 11:28 p.m.24 views

CVE-2006-6736

Unspecified vulnerability in Sun Java Development Kit JDK and Java Runtime Environment JRE 5.0 Update 6 and earlier, Java System Development Kit SDK and JRE 1.4.212 and earlier 1.4.x versions, and SDK and JRE 1.3.118 and earlier allows attackers to use untrusted applets to "access data in other...

4.3CVSS6.3AI score0.02311EPSS
Exploits0References28
Exploit DB
Exploit DB
added 2006/11/14 12:0 a.m.20 views

Inventory Manager - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/21069/info Inventory Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. Successful exploits of these vulnerabiliti...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/09/19 12:0 a.m.22 views

more.groupware <= 0.74 (new_calendarid) Remote SQL Injection Exploit

No description provided by source. ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/03/07 12:0 a.m.12 views

phpMyFAQ < 1.6.0 SQL Injection (deprecated)

Binary data 2675.prm...

5CVSS7.3AI score0.02624EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2004/08/21 12:0 a.m.16 views

MyDms 1.4 - SQL Injection / Directory Traversal

source: https://www.securityfocus.com/bid/10996/info MyDMS is reportedly susceptible to both a directory traversal vulnerability and an SQL injection vulnerability. The SQL injection vulnerability is present because a script improperly sanitizes user-supplied data located in a URI argument before...

7.4AI score
Exploits0
NVD
NVD
added 2001/01/09 5:0 a.m.15 views

CVE-2000-1145

Recourse ManTrap 1.6 allows attackers who have gained root access to use utilities such as crash or fsdb to read /dev/mem and raw disk devices to identify ManTrap processes or modify arbitrary data files...

4.6CVSS6.7AI score0.00361EPSS
Exploits0References4
NVD
NVD
added 1999/02/01 5:0 a.m.21 views

CVE-1999-0351

FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by a client...

6.4CVSS6.5AI score0.01497EPSS
Exploits0References2
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.9 views

CVE-2018-4741

...

Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.7 views

CVE-2025-2504

...

Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.4 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder