Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

Packet Storm
Packet Stormadded 2011/04/10 12:0 a.m.33 views

NooMS CMS 1.1.1 Cross Site Request Forgery

NooMS CMS version 1.1.1 CSRF Bug Found: April 9th 2011 Found by: loneferret as far as I know anyway Software Download Link: http://phpkode.com/download/p/2381nooms1.1.1.tar.bz2 Nods to exploit-db Team Well, I didn't have much to do this morning so figured I'd try to see how fast it would take me ...

0.9AI score
Exploits0
OpenVAS
OpenVASadded 2009/09/02 12:0 a.m.42 views

Fedora Core 10 FEDORA-2009-8538 (wordpress-mu)

The remote host is missing an update to wordpress-mu announced via advisory FEDORA-2009-8538. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...

5CVSS6.4AI score0.85338EPSS
Exploits17References2
Prion
Prionadded 2009/08/12 10:30 a.m.9 views

Code injection

Static code injection vulnerability in admin/admin.php in mxCamArchive 2.2 allows remote authenticated administrators to inject arbitrary PHP code into an unspecified program via the description parameter, which is executed by invocation of index.php. NOTE: some of these details are obtained from...

6.5CVSS7.4AI score0.01313EPSS
Exploits0References4Affected Software1
NVD
NVDadded 2009/06/18 9:30 p.m.11 views

CVE-2009-2116

Directory traversal vulnerability in admin.php in SkyBlueCanvas 1.1 r237 allows remote authenticated administrators to list directory contents via a .. dot dot in the dir parameter...

4CVSS6.2AI score0.01404EPSS
Exploits1References3
CVE
CVEadded 2009/01/26 8:0 p.m.46 views

CVE-2009-0275

CVE-2009-0275 affects Ryneezy phoSheezy 0.2 via a static code injection vulnerability in admin.php that lets an authenticated admin inject PHP into config/header (and related config/footer, header) and can be exploited via CVE-2009-0250 to facilitate unauthenticated access. The issue is documente...

6.5CVSS6.8AI score0.01795EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2007/04/25 4:19 p.m.10 views

Design/Logic Flaw

admin.php in Phorum before 5.1.22 allows remote attackers to obtain the full path via the module parameter...

5CVSS7.1AI score0.07419EPSS
Exploits1References9Affected Software1
Exploit DB
Exploit DBadded 2003/10/08 12:0 a.m.31 views

PHP-Nuke 6.6 - 'admin.php' SQL Injection

source: https://www.securityfocus.com/bid/8798/info It has been reported that PHP-Nuke is prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The issue is said to occur within the admin.php file, specifically when...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2003/08/09 12:0 a.m.23 views

Invision Power Board (IP.Board) 1.0/1.1/1.2 - 'admin.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/8381/info Invision Power Board admin.php script reported prone to a cross-site scripting vulnerability. The issue presents itself due to a lack of sufficient sanitization performed by functions in an Invision Power Board script on user-influenced URI...

7.4AI score
Exploits0
Rows per page
Query Builder