CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7610 matches found

exploitpack•added 2006/11/06 12:0 a.m.•8 views

AIOCP 1.3.x - cp_links_search.php SQL Injection

AIOCP 1.3.x - cplinkssearch.php SQL Injection source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attack...

exploitpack•added 2006/11/06 12:0 a.m.•9 views

AIOCP 1.3.x - cp_dpage.php SQL Injection

AIOCP 1.3.x - cpdpage.php SQL Injection source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to...

exploitpack•added 2006/11/06 12:0 a.m.•5 views

AIOCP 1.3.x - cp_dpage.php Cross-Site Scripting

AIOCP 1.3.x - cpdpage.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an...

exploitpack•added 2006/11/06 12:0 a.m.•13 views

AIOCP 1.3.x - cp_show_ec_products.php Cross-Site Scripting

AIOCP 1.3.x - cpshowecproducts.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow...

Exploit DB•added 2006/11/06 12:0 a.m.•18 views

AIOCP 1.3.x - 'cp_forum_view.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Exploit DB•added 2006/11/06 12:0 a.m.•18 views

AIOCP 1.3.x - 'cp_edit_user.php' SQL Injection

source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

exploitpack•added 2006/11/06 12:0 a.m.•12 views

AIOCP 1.3.x - cp_login.php SQL Injection

AIOCP 1.3.x - cplogin.php SQL Injection source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to...

exploitpack•added 2006/11/06 12:0 a.m.•15 views

AIOCP 1.3.x - cp_links.php SQL Injection

AIOCP 1.3.x - cplinks.php SQL Injection source: https://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to...

Japan Vulnerability Notes•added 2006/11/06 12:0 a.m.•12 views

JVN#88325166 Hyper NIKKI System cross-site scripting vulnerability

Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session hijacking. Solution Products Affected hns-2.190.8 hns-lite-2.190.8 and earlier...

exploitpack•added 2006/11/04 12:0 a.m.•9 views

IF-CMS - index.php Cross-Site Scripting

IF-CMS - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20909/info IF-CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in...

exploitpack•added 2006/11/03 12:0 a.m.•8 views

ac4p Mobile - index.php Multiple Cross-Site Scripting Vulnerabilities

ac4p Mobile - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/20895/info Mobile is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues...

exploitpack•added 2006/10/30 12:0 a.m.•9 views

Exhibit Engine 1.22 - fstyles.php?toroot Remote File Inclusion

Exhibit Engine 1.22 - fstyles.php?toroot Remote File Inclusion source: https://www.securityfocus.com/bid/20793/info Exhibit Engine Software is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allo...

exploitpack•added 2006/10/27 12:0 a.m.•14 views

ASPPlayGround.NET Forum 2.4.5 - Calendar.asp Cross-Site Scripting

ASPPlayGround.NET Forum 2.4.5 - Calendar.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/20335/info ASPPlayground.NET Forum Advanced Edition is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage...

Exploit DB•added 2006/10/24 12:0 a.m.•23 views

Simpnews 2.x - 'pwlost.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20714/info SimpNews is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

Exploit DB•added 2006/10/17 12:0 a.m.•22 views

Webgenius Goop Gallery 2.0 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20554/info GOOP Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting us...

exploitpack•added 2006/10/14 12:0 a.m.•9 views

H-Sphere WebShell 2.x - login.php Cross-Site Scripting

H-Sphere WebShell 2.x - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20532/info H-Sphere WebShell is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script co...

exploitpack•added 2006/10/04 12:0 a.m.•11 views

osCommerce 2.2 - adminreviews.php?page Cross-Site Scripting

osCommerce 2.2 - adminreviews.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user i...

Exploit DB•added 2006/10/04 12:0 a.m.•19 views

osCommerce 2.2 - '/admin/products_expected.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attack...

Exploit DB•added 2006/10/04 12:0 a.m.•18 views

osCommerce 2.2 - '/admin/reviews.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attack...

Exploit DB•added 2006/09/25 12:0 a.m.•23 views

Quickblogger 1.4 - Remote File Inclusion

source: https://www.securityfocus.com/bid/20210/info Quickblogger is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary server-side script code on an affected computer...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by