Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

NVD
NVDadded 2017/09/14 1:29 p.m.10 views

CVE-2017-1002020

Vulnerability in wordpress plugin surveys v1.01.8, The code in surveyform.php does not sanitize the action variable before placing it inside of an SQL query...

9.8CVSS9.6AI score0.10906EPSS
Exploits1References3
Packet Storm
Packet Stormadded 2007/05/22 12:0 a.m.27 views

hlstarts-xss2.txt

HLstats v1.35 - Cross-Site Scripting Vulnerability 2 HLstats v1.35 - Cross-Site Scripting Vulnerability 2 discovered by John Martinelli of RedLevel Security Google d0rk: "generated in real-time by HLstats" file hlstats.php - variable action - method get alert1"...

7.4AI score
Exploits0
Prion
Prionadded 2007/02/21 5:28 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the wpexplainnonce function in the nonce AYS functionality wp-includes/functions.php for WordPress 2.0 before 2.0.9 and 2.1 before 2.1.1 allows remote attackers to inject arbitrary web script or HTML via the file parameter to wp-admin/templates.php, and...

4.3CVSS5.9AI score0.06232EPSS
Exploits1References10Affected Software1
OSV
OSVadded 2007/02/21 5:28 p.m.1 views

DEBIAN-CVE-2007-1049

Cross-site scripting XSS vulnerability in the wpexplainnonce function in the nonce AYS functionality wp-includes/functions.php for WordPress 2.0 before 2.0.9 and 2.1 before 2.1.1 allows remote attackers to inject arbitrary web script or HTML via the file parameter to wp-admin/templates.php, and...

4.3CVSS6.1AI score0.06232EPSS
Exploits1References1
Rows per page
Query Builder