CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2022 matches found

exploitpack•added 2012/01/24 12:0 a.m.•27 views

stoneware webnetwork6 - Multiple Vulnerabilities

stoneware webnetwork6 - Multiple Vulnerabilities Stoneware WebNetwork6 Vulnerability Assessment CVE-2012-0285 – XSS CVE-2012-0286 - CSRF Conducted by: Leland Public Schools Stoneware Customer Jacob Holcomb Network Engineer for LPS Conducted for: Leland Public Schools Purchaser of WebNetwork...

6.8CVSS0.4AI score0.00424EPSS

Exploits4

exploitpack•added 2012/01/16 12:0 a.m.•18 views

phpVideoPro 0.8.x0.9.7 - Multiple Cross-Site Scripting Vulnerabilities

phpVideoPro 0.8.x0.9.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51428/info phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

Exploits0

exploitpack•added 2011/12/14 12:0 a.m.•14 views

Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: www.securityfocus.com/bid/51069/info Nagios XI is prone to an HTML injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Successful...

0.4AI score

Exploits0

Prion•added 2011/10/25 7:55 p.m.•15 views

Design/Logic Flaw

Google Chrome before 15.0.874.102 does not prevent redirects to chrome: URLs, which has unspecified impact and remote attack vectors...

7.5CVSS6.8AI score0.00198EPSS

Exploits0References4Affected Software1

CVE•added 2011/10/25 7:0 p.m.•50 views

CVE-2011-3879

CVE-2011-3879 affects Google Chrome prior to 15.0.874.102, where redirects to chrome: URLs are not prevented, yielding unspecified impact and remote attack vectors. Remediation per connected advisories is to upgrade to Chrome 15.0.874.102 or newer (e.g., as noted in GLSA 201111-01 for Chromium/Ch...

7.5CVSS6.1AI score0.00198EPSS

Exploits0References4Affected Software1

OpenVAS•added 2011/10/14 12:0 a.m.•17 views

SmartFTP Filename Processing Unspecified Vulnerability

SmartFTP Client is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.00497EPSS

Exploits0References4

OpenVAS•added 2011/10/14 12:0 a.m.•16 views

SmartFTP Filename Processing Unspecified Vulnerability

This host is installed with SmartFTP Client and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gbsmartftpclientfilenamesunspecifiedvuln.nasl 7029 2017-08-31 11:51:40Z teissa $ SmartFTP Filename Processing Unspecified Vulnerability Authors: Antu Sanadi Copyright: Copyright ...

10CVSS0.9AI score0.00497EPSS

Exploits0References3

CVE•added 2011/09/17 10:0 a.m.•51 views

CVE-2011-2874

Technical details for CVE-2011-2874 are not publicly provided in the supplied documents. No explicit affected products, versions, impact, or remediation are stated here. Monitor for updates.

6.8CVSS6.3AI score0.00106EPSS

Exploits0References5Affected Software1

OpenVAS•added 2011/07/29 12:0 a.m.•9 views

ICQ Cross Site Scripting Vulnerability

ICQ is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.2AI score

Exploits0References1

OpenVAS•added 2011/07/29 12:0 a.m.•13 views

ICQ Cross Site Scripting Vulnerability

This host is installed with ICQ and is prone to cross-site scripting vulnerability. OpenVAS Vulnerability Test $Id: secpodicqxssvuln.nasl 7029 2017-08-31 11:51:40Z teissa $ ICQ Cross Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright c 2011 SecPod, http://www.secpod.com This...

7.3AI score

Exploits0References1

Packet Storm•added 2011/07/13 12:0 a.m.•18 views

Skype 5.3.0.120 Cross Site Scripting

+-----------------------------------------------------------------------------+ | noptrix.net - Public Security Advisory | +-----------------------------------------------------------------------------+ Date: ----- 07/13/2011 Vendor: ------- Skype Limited - http://www.skype.com/ Affected Software...

7.4AI score

Exploits0

Exploit DB•added 2011/06/28 12:0 a.m.•20 views

Joomla! 1.6.3 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/48471/info Joomla! CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score

Exploits0

Vulnerability Lab•added 2011/06/12 12:0 a.m.•19 views

Parallels Plesk v9.0.2b - Cross Site Scripting Vulnerability

Document Title: =============== Parallels Plesk v9.0.2b - Cross Site Scripting Vulnerability Release Date: ============= 2011-06-12 Vulnerability Laboratory ID VL-ID: ==================================== 153 Product & Service Introduction: =============================== Parallels Plesk Panel ist...

0.1AI score

Exploits0

Exploit DB•added 2011/05/24 12:0 a.m.•20 views

Gadu-Gadu Instant Messenger 6.0 - File Transfer Cross-Site Scripting

source: https://www.securityfocus.com/bid/47957/info Gadu-Gadu Instant Messenger is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

7.4AI score

Exploits0

exploitpack•added 2011/05/20 12:0 a.m.•76 views

PHP Captcha Securimage 2.0.2 - Authentication Bypass

PHP Captcha Securimage 2.0.2 - Authentication Bypass Sense of Security - Security Advisory - SOS-11-007 Release Date. 20-May-2011 Last Update. - Vendor Notification Date. 04-Apr-2011 Product. Securimage / PHPCaptcha Platform. PHP Affected versions. 1.0.4 - 2.0.2 Severity Rating. Medium Impact...

0.3AI score

Exploits0

CVE•added 2011/04/10 1:29 a.m.•42 views

CVE-2011-1680

CVE-2011-1680 concerns ncpmount in ncpfs 2.2.6 and earlier, where the /etc/mtab~ lock file is not removed after a failed attempt to add a mount entry. The entry notes unspecified impact and local attack vectors. Connected sources also indicate this issue is addressed alongside related CVEs (CVE-2...

4.4CVSS6.1AI score0.00148EPSS

Exploits1References18Affected Software1

securityvulns•added 2011/03/09 12:0 a.m.•51 views

InSite Troubleshooting Cross-Site Scripting

Class Input Validation Error CVE Remote Yes Local No Published Feb 14 2011 08:55AM Credit Dionach Vulnerable Kodak InSite 5.5.2 Kodak InSite is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execut...

0.3AI score

Exploits0

exploitpack•added 2011/03/03 12:0 a.m.•18 views

Support Incident Tracker (SiT!) 3.62 - Multiple Cross-Site Scripting Vulnerabilities

Support Incident Tracker SiT! 3.62 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46671/info Support Incident Tracker SiT! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker ma...

7AI score

Exploits0

securityvulns•added 2010/12/28 12:0 a.m.•117 views

[waraxe-2010-SA#078] - Multiple Vulnerabilities in CruxCMS 3.0.0

waraxe-2010-SA078 - Multiple Vulnerabilities in CruxCMS 3.0.0 =============================================================================== Author: Janek Vind "waraxe" Date: 27. December 2010 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-78.html Affected Software: CruxCMS is a...

Exploits0

Packet Storm•added 2010/11/27 12:0 a.m.•27 views

NoScript Cross Site Scripting Via SQL Injection

Hi List NoScript fails to detect the reflective XSS from trusted domains when an attack is conducted through SQLXSSI. The bypass in NoScript has been successfully conducted by using "Reflective XSS" through Union SQL poisoning attacks by exploiting the reverted errors in the browser. The attack...

1.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by