CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

RedhatCVE•added 2026/03/27 2:25 p.m.•4 views

CVE-2021-27308

A cross-site scripting XSS vulnerability in the admin login panel in 4images version 1.8 allows remote attackers to inject JavaScript via the "redirect" parameter...

4.8CVSS5.7AI score0.00473EPSS

Exploits4References1

RedhatCVE•added 2026/01/09 12:44 p.m.•4 views

CVE-2005-1419

SQL injection vulnerability in the admin login panel for Ocean12 Mailing List Manager 1.06 allows remote attackers to execute arbitrary SQL commands via the Adminid parameter...

7.5CVSS8.8AI score0.00603EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2015-2213

Malware in sbrugna...

4.3CVSS6.4AI score0.00318EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-1422

Malware in sbrugna...

7.5CVSS6.4AI score0.00603EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•19 views

EUVD-2025-16223

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00238EPSS

Exploits1References4

RedhatCVE•added 2025/05/26 7:32 p.m.•8 views

CVE-2025-5128

A vulnerability, which was classified as critical, was found in ScriptAndTools Real-Estate-website-in-PHP 1.0. Affected is an unknown function of the file /admin/ of the component Admin Login Panel. The manipulation of the argument Password leads to sql injection. It is possible to launch the...

7.5CVSS7.2AI score0.00238EPSS

Exploits1References1

NVD•added 2025/05/24 4:15 p.m.•11 views

CVE-2025-5128

9.8CVSS0.00238EPSS

Exploits1References4

OSV•added 2025/05/24 4:15 p.m.•0 views

CVE-2025-5128

9.8CVSS5.6AI score

Exploits0References4

Vulnrichment•added 2025/05/24 4:0 p.m.•5 views

CVE-2025-5128 ScriptAndTools Real-Estate-website-in-PHP Admin Login Panel admin sql injection

7.5CVSS7.5AI score0.00238EPSS

Exploits1References4

CVE•added 2025/05/24 4:0 p.m.•48 views

CVE-2025-5128

CVE-2025-5128 refers to ScriptAndTools Real-Estate-website-in-PHP v1.0. The issue is an SQL injection in the Admin Login Panel via the Password parameter in the /admin/ path, enabling remote exploitation. Public disclosure is noted, and vendor response is absent. Multiple connected sources corrob...

9.8CVSS7.5AI score0.00238EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/05/24 4:0 p.m.•17 views

CVE-2025-5128 ScriptAndTools Real-Estate-website-in-PHP Admin Login Panel admin sql injection

7.5CVSS0.00238EPSS

Exploits1References4

Positive Technologies•added 2025/05/24 12:0 a.m.•2 views

PT-2025-22843 · Unknown · Scriptandtools Real-Estate-Website-In-Php

Name of the Vulnerable Software and Affected Versions: ScriptAndTools Real-Estate-website-in-PHP version 1.0 Description: A critical vulnerability was found in the Admin Login Panel of the ScriptAndTools Real-Estate-website-in-PHP. The manipulation of the Password argument leads to SQL injection...

9.8CVSS7.4AI score0.00238EPSS

Exploits1References13

RedhatCVE•added 2025/05/22 4:28 p.m.•5 views

CVE-2020-35276

EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user...

9.8CVSS8AI score0.00316EPSS

Exploits1

NVD•added 2023/08/25 4:15 p.m.•11 views

CVE-2020-11711

An issue was discovered in Stormshield SNS 3.8.0. Authenticated Stored XSS in the admin login panel leads to SSL VPN credential theft. A malicious disclaimer file can be uploaded from the admin panel. The resulting file is rendered on the authentication interface of the admin panel. It is possibl...

4.8CVSS5AI score0.00487EPSS

Exploits0References3

Packet Storm•added 2021/06/03 12:0 a.m.•180 views

4Images 1.8 Cross Site Scripting

Exploit Title: 4Images 1.8 - 'redirect' Reflected XSS Exploit Author: Piyush Patil Vendor Homepage: https://www.4homepages.de/ Software Link: https://www.4homepages.de/?download=4images1.8.zip&code=81da0c7b5208e172ea83d879634f51d6 Version: 4Images Gallery 1.8 Tested on: Windows 10 and Kali CVE :...

3.5CVSS5.2AI score0.00473EPSS

Exploits4

0day.today•added 2021/06/02 12:0 a.m.•27 views

Seo Panel 4.8.0 - (search_name) Reflected XSS Vulnerability

Exploit Title: Seo Panel 4.8.0 - 'searchname' Reflected XSS Exploit Author: Piyush Patil Vendor Homepage: https://www.seopanel.org/ Software Link: https://github.com/seopanel/Seo-Panel/releases/tag/4.8.0 Version: Seo Panel 4.8.0 Tested on: Windows 10 and Kali CVE : CVE-2021-28417 -Description: A...

4.8CVSS0.2AI score0.00208EPSS

Exploits4

NVD•added 2021/03/22 3:15 p.m.•12 views

CVE-2021-27308

A cross-site scripting XSS vulnerability in the admin login panel in 4images version 1.8 allows remote attackers to inject JavaScript via the "redirect" parameter...

4.8CVSS0.00473EPSS

Exploits4References2

OSV•added 2021/03/22 3:15 p.m.•0 views

CVE-2021-27308

A cross-site scripting XSS vulnerability in the admin login panel in 4images version 1.8 allows remote attackers to inject JavaScript via the "redirect" parameter...

4.8CVSS5.8AI score0.00473EPSS

Exploits4References2

CVE•added 2021/03/22 2:49 p.m.•100 views

CVE-2021-27308

CVE-2021-27308 concerns 4images v1.8 with a cross-site scripting (XSS) in the admin login panel, exploitable via the redirect parameter. The underlying issue is insufficient input handling on the redirect field, allowing an attacker to inject JavaScript. Documents also reference public exploits/e...

4.8CVSS4.8AI score0.00473EPSS

Exploits4References2Affected Software1

Prion•added 2015/02/27 3:59 p.m.•7 views

Cross site scripting

Cross-site scripting XSS vulnerability in the admin-login panel admin/index.cgi in Cosmoshop allows remote attackers to inject arbitrary web script or HTML via the username field uname parameter...

4.3CVSS6.1AI score0.00318EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by