Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

249 matches found

Packet Storm
Packet Stormadded 2008/07/01 12:0 a.m.13 views

barenuked-admin.txt

!/usr/bin/perl ============================================ BareNuked CMS Arbitrary Add Admin Exploit ============================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------|...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2008/06/11 12:0 a.m.21 views

flatcal-bypass.txt

Flat Calendar v1.1 Remote Permission Bypass Vulnerability Author : CrackersChild Dork : Flat Calendar: View All Flat Calendar: View All için yaklaşık 654.000 sonuçtan Exploits: site.com/calenderpath/admin/add.php Adding New Evetns without admin permissions...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/02/01 12:0 a.m.29 views

Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities

Synopsis: Ipswitch WSFTP Server 5.04 multiple arbitrary code execution vulnerabilities Michal Bucko sapheal, HACKPL. I. BACKGROUND "..WSFTP Server is commonly used for setting up an FTP server that allows users to login, download and upload files...", note from Ipswitch web site. II. DESCRIPTION...

1.1AI score
Exploits0
Packet Storm
Packet Stormadded 2006/06/26 12:0 a.m.26 views

bingbox.txt

Bingbox.com Homepage: http://www.bingbox.com Affected files: Profile input boxes: - City input Registering Viewing Birthdays Adding a friend Viewing people online ----------------------------------------------- XSS with cookie disclosure via inviting friends:...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2006/06/26 12:0 a.m.32 views

youtube.txt

Youtube.com Homepage: http://www.youtube.com Affected files: Search box input Adding a new blog: - Blog name XSS Vuln with cookie disclosure via search box: Data isn't sanatized when using the search box. For PoC input: PoC link:...

7.4AI score
Exploits0
NVD
NVDadded 2006/05/24 8:2 p.m.9 views

CVE-2006-2564

Multiple cross-site scripting XSS vulnerabilities in index.php in AlstraSoft E-Friends allow remote attackers to inject arbitrary web script or HTML by 1 posting a blog, 2 posting a listing, 3 posting an event, 4 adding comments, or 5 sending a message...

4.3CVSS5.6AI score0.00527EPSS
Exploits0References6
Prion
Prionadded 2006/05/24 8:2 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in AlstraSoft E-Friends allow remote attackers to inject arbitrary web script or HTML by 1 posting a blog, 2 posting a listing, 3 posting an event, 4 adding comments, or 5 sending a message...

4.3CVSS5.9AI score0.00527EPSS
Exploits0References6Affected Software1
Prion
Prionadded 2006/01/12 6:2 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the Title field on the "Adding New Event" page, and possibly other vectors, involving iframe tags...

4.3CVSS6.3AI score0.00572EPSS
Exploits0References7Affected Software1
NVD
NVDadded 2006/01/12 6:2 a.m.10 views

CVE-2006-0180

Cross-site scripting XSS vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the Title field on the "Adding New Event" page, and possibly other vectors, involving iframe tags...

4.3CVSS5.8AI score0.00572EPSS
Exploits0References7
Rows per page
Query Builder