CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3351 matches found

exploitpack•added 2012/02/10 12:0 a.m.•8 views

ProWiki - id Cross-Site Scripting

ProWiki - id Cross-Site Scripting source: https://www.securityfocus.com/bid/51987/info ProWiki is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2012/02/03 12:0 a.m.•18 views

project-open 3.4.x - 'account-closed.tcl' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51842/info project-open is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

exploitpack•added 2012/02/03 12:0 a.m.•10 views

project-open 3.4.x - account-closed.tcl Cross-Site Scripting

project-open 3.4.x - account-closed.tcl Cross-Site Scripting source: https://www.securityfocus.com/bid/51842/info project-open is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...

exploitpack•added 2012/02/02 12:0 a.m.•12 views

Joomla! Component Currency Converter 1.0.0 - from Cross-Site Scripting

Joomla! Component Currency Converter 1.0.0 - from Cross-Site Scripting source: https://www.securityfocus.com/bid/51804/info The Currency Converter component for Joomla! is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may...

exploitpack•added 2012/02/02 12:0 a.m.•10 views

iknSupport search Module - Cross-Site Scripting

iknSupport search Module - Cross-Site Scripting source: https://www.securityfocus.com/bid/51803/info iknSupport is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Exploit DB•added 2012/02/02 12:0 a.m.•21 views

iknSupport 'search' Module - Cross-Site Scripting

source: https://www.securityfocus.com/bid/51803/info iknSupport is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

exploitpack•added 2012/02/01 12:0 a.m.•7 views

phpLDAPadmin 1.2.0.5-2 - server_id Cross-Site Scripting

phpLDAPadmin 1.2.0.5-2 - serverid Cross-Site Scripting source: https://www.securityfocus.com/bid/51794/info phpLDAPadmin is prone to cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script co...

Exploit DB•added 2012/02/01 12:0 a.m.•17 views

phpLDAPadmin 1.2.0.5-2 - 'server_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51794/info phpLDAPadmin is prone to cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the contex...

exploitpack•added 2012/01/31 12:0 a.m.•10 views

4Images 1.7.10 - admincategories.php?cat_parent_id Cross-Site Scripting

4Images 1.7.10 - admincategories.php?catparentid Cross-Site Scripting source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection...

Exploit DB•added 2012/01/31 12:0 a.m.•29 views

4Images 1.7.10 - '/admin/categories.php?cat_parent_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection vulnerability. An attacker may leverage these issues to perform spoofing...

exploitpack•added 2012/01/31 12:0 a.m.•11 views

4Images 1.7.10 - admincategories.php?cat_parent_id SQL Injection

4Images 1.7.10 - admincategories.php?catparentid SQL Injection source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection...

OpenVAS•added 2012/01/27 12:0 a.m.•15 views

Cisco Collaboration Server 'LoginPage.jhtml' Cross Site Scripting Vulnerability

Cisco Collaboration Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow t...

4.3CVSS7AI score0.01162EPSS

Exploits1References2

exploitpack•added 2012/01/26 12:0 a.m.•15 views

WordPress Plugin Slideshow Gallery 1.1.x - border Cross-Site Scripting

WordPress Plugin Slideshow Gallery 1.1.x - border Cross-Site Scripting source: https://www.securityfocus.com/bid/51678/info Slideshow Gallery for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this iss...

Exploit DB•added 2012/01/26 12:0 a.m.•19 views

WordPress Plugin Slideshow Gallery 1.1.x - 'border' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51678/info Slideshow Gallery for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Exploit DB•added 2012/01/24 12:0 a.m.•30 views

WordPress Plugin YouSayToo auto-publishing 1.0 - 'submit' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51649/info YouSayToo auto-publishing for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2012/01/21 12:0 a.m.•19 views

Lead Capture - 'login.php' Script Cross-Site Scripting

source: https://www.securityfocus.com/bid/51785/info Lead Capture is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

OpenVAS•added 2012/01/19 12:0 a.m.•13 views

phpVideoPro Multiple Cross Site Scripting Vulnerabilities

phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the...

Exploits0References4

Exploit DB•added 2012/01/18 12:0 a.m.•23 views

OneOrZero AIMS - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51549/info OneOrZero AIMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

exploitpack•added 2012/01/16 12:0 a.m.•9 views

PHP Membership Site Manager Script 2.1 - index.php Cross-Site Scripting

PHP Membership Site Manager Script 2.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51416/info PHP Membership Site Manager Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically...

Exploit DB•added 2012/01/16 12:0 a.m.•19 views

Giveaway Manager - 'members.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51431/info Giveaway Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by