Lucene search
K

106 matches found

Exploit DB
Exploit DB
added 2007/07/30 12:0 a.m.25 views

IT!CMS 0.2 - 'menu-ed.php?wndtitle' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25129/info IT!CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary script code ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/02/12 12:0 a.m.24 views

EWay 4 - Default.APSX Cross-Site Scripting

source: https://www.securityfocus.com/bid/22528/info eWay is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/08/23 12:0 a.m.11 views

SaveWebPortal 3.4 - Multiple Cross-Site Scripting Vulnerabilities

SaveWebPortal 3.4 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14642/info SaveWebPortal is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...

0.1AI score
Exploits0
CERT
CERT
added 2004/07/14 12:0 a.m.28 views

Microsoft Windows fails to properly process showHelp URLs

Overview A vulnerability in the showHelp Method may allow a remote attacker to execute arbitrary code. Description A cross domain vulnerability exists in the showHelp method that may permit a remote attacker to execute local commands on the system with the privileges of the current user...

7.5CVSS6.4AI score0.5261EPSS
Exploits1References1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.54 views

http-request_method.txt

Date: Wed, 6 Jan 1999 13:16:07 -0000 From: mnemonix To: [email protected] Subject: HTTP REQUESTMETHOD flaw There is a "feature" inherent in some web servers, such as Apache 1.3.x or MS IIS, that carries mild security implications that could allow web server attacks to go unnoticed. The problem...

7.4AI score
Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.12 views

CVE-2021-33143

...

Exploits0
Rows per page
Query Builder