CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3351 matches found

OpenVAS•added 2011/01/27 12:0 a.m.•7 views

PRTG Network Monitor 'errormsg' Parameter Multiple Cross Site Scripting Vulnerabilities

PRTG Network Monitor is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user- supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may le...

Exploits0References2

Exploit DB•added 2011/01/26 12:0 a.m.•12 views

SimpGB 1.49.2 - 'Guestbook.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46033/info SimpGB is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

exploitpack•added 2011/01/25 12:0 a.m.•9 views

WordPress Plugin BezahlCode Generator 1.0 - gen_name Cross-Site Scripting

WordPress Plugin BezahlCode Generator 1.0 - genname Cross-Site Scripting source: https://www.securityfocus.com/bid/46005/info The BezahlCode Generator Plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may...

Patchstack•added 2011/01/25 12:0 a.m.•7 views

WordPress Videox7 UGC Plugin 2.5.3.2 - Cross-Site Scripting Vulnerability

This WordPress Videox7 UGC plugin's "listid" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can ste...

Exploits0References1Affected Software1

OpenVAS•added 2011/01/25 12:0 a.m.•12 views

web@all <= 1.1 XSS Vulnerability - Active Check

web@all is prone to a cross-site scripting XSS vulnerability because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Exploits0References1

Exploit DB•added 2011/01/25 12:0 a.m.•19 views

PivotX 2.2 - '/pivotx/includes/blogroll.php?color' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Exploit DB•added 2011/01/25 12:0 a.m.•19 views

WordPress Plugin Featured Content 0.0.1 - 'listid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46001/info The Featured Content plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

exploitpack•added 2011/01/25 12:0 a.m.•8 views

web@all 1.1 - url Cross-Site Scripting

web@all 1.1 - url Cross-Site Scripting source: https://www.securityfocus.com/bid/45976/info web@all is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of...

Exploit DB•added 2011/01/25 12:0 a.m.•17 views

WordPress Plugin FCChat Widget 2.1.7 - 'path' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46009/info The FCChat Widget plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2011/01/25 12:0 a.m.•16 views

PivotX 2.2 - '/pivotx/includes/timwrapper.php?src' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

exploitpack•added 2011/01/25 12:0 a.m.•7 views

PivotX 2.2.2 - module_image.php Cross-Site Scripting

PivotX 2.2.2 - moduleimage.php Cross-Site Scripting source: https://www.securityfocus.com/bid/45983/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in th...

exploitpack•added 2011/01/25 12:0 a.m.•9 views

WordPress Plugin Featured Content 0.0.1 - listid Cross-Site Scripting

WordPress Plugin Featured Content 0.0.1 - listid Cross-Site Scripting source: https://www.securityfocus.com/bid/46001/info The Featured Content plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...

Exploit DB•added 2011/01/24 12:0 a.m.•22 views

WordPress Plugin oQey-Gallery 0.2 - 'tbpv_domain' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46007/info The oQey-Gallery plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2011/01/24 12:0 a.m.•18 views

WordPress Plugin Uploader 1.0 - 'num' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45984/info The Uploader Plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Exploit DB•added 2011/01/24 12:0 a.m.•23 views

WordPress Plugin Feature Slideshow 1.0.6 - 'src' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46004/info The Feature Slideshow Plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2011/01/24 12:0 a.m.•19 views

WordPress Plugin Powerhouse Museum Collection Image Grid 0.9.1.1 - 'tbpv_username' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46006/info The Powerhouse Museum Collection Image Grid Plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

exploitpack•added 2011/01/24 12:0 a.m.•15 views

WordPress Plugin Feature Slideshow 1.0.6 - src Cross-Site Scripting

WordPress Plugin Feature Slideshow 1.0.6 - src Cross-Site Scripting source: https://www.securityfocus.com/bid/46004/info The Feature Slideshow Plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...

exploitpack•added 2011/01/23 12:0 a.m.•12 views

WordPress Plugin RSS Feed Reader 0.1 - rss_url Cross-Site Scripting

WordPress Plugin RSS Feed Reader 0.1 - rssurl Cross-Site Scripting source: https://www.securityfocus.com/bid/45997/info The RSS Feed Reader WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...

Exploit DB•added 2011/01/23 12:0 a.m.•22 views

WordPress Plugin RSS Feed Reader 0.1 - 'rss_url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45997/info The RSS Feed Reader WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

OpenVAS•added 2011/01/13 12:0 a.m.•15 views

Fisheye Multiple Vulnerabilities

Fisheye and Crucible are prone to cross-site scripting, security- bypass, and information-disclosure vulnerabilities. Attackers can exploit these issues to execute arbitrary script code in the context of the website, steal cookie-based authentication information, disclose sensitive information, o...

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by