Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4774 matches found

Exploit DB
Exploit DBadded 2014/05/08 12:0 a.m.23 views

CMS Touch - 'news.php?News_ID' SQL Injection

source: https://www.securityfocus.com/bid/67377/info CMS Touch is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2014/05/08 12:0 a.m.22 views

CMS Touch - 'pages.php?Page_ID' SQL Injection

source: https://www.securityfocus.com/bid/67377/info CMS Touch is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit...

7.4AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2014/05/01 7:2 p.m.25 views

Important: Red Hat Security Advisory: openshift-origin-broker-util security update

An updated openshift-origin-broker-util package that fixes one security issue is now available for Red Hat OpenShift Enterprise 2.0.5. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

2.1CVSS5.8AI score0.0038EPSS
Exploits0References2
CISA
CISAadded 2014/04/08 12:0 a.m.15 views

OpenSSL 'Heartbleed' Vulnerability

A vulnerability in OpenSSL could allow a remote attacker to expose sensitive data, possibly including user authentication credentials and secret keys, through incorrect memory handling in the TLS heartbeat extension. This may allow an attacker to decrypt traffic or perform other attacks. OpenSSL...

6.8AI score
Exploits0References1
OpenVAS
OpenVASadded 2014/04/03 12:0 a.m.33 views

OTRS Help Desk Multiple Vulnerabilities

OTRS Help Desk is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if description...

4.3CVSS7.5AI score0.01466EPSS
Exploits2References3
OpenVAS
OpenVASadded 2014/04/01 12:0 a.m.255 views

ionCube Loader < 2.46 Multiple Vulnerabilities - Active Check

ionCube Loader is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8AI score
Exploits0References1
OSV
OSVadded 2014/03/26 8:0 a.m.11 views

CURL-CVE-2014-0138 wrong reuse of connections

libcurl can in some circumstances reuse the wrong connection when asked to do transfers using other protocols than HTTP and FTP. libcurl features a pool of recent connections so that subsequent requests can reuse an existing connection to avoid overhead. When reusing a connection a range of...

6.4CVSS6.8AI score0.0508EPSS
Exploits0
0day.today
0day.todayadded 2014/03/12 12:0 a.m.48 views

Zyxel Prestige 660H-61 ADSL Router - RPSysAdmin.HTML Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications source: http://www.securityfocus.com/bid/19180/info The Zyxel Prestige 660H-61 ADSL Router is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

4.3CVSS6.7AI score0.03187EPSS
Exploits2
ThreatPost
ThreatPostadded 2014/03/03 2:8 p.m.34 views

Four Oracle Demantra Security Vulnerabilities Found

Oracle’s Demantra, part of the company’s Value Chain Planning suite of software, is fraught with vulnerabilities according to several bug disclosures issued over the weekend. Researchers at the London-based computer security firm Portcullis claim the application is plagued by a four vulnerabiliti...

5.5CVSS0.9AI score0.59494EPSS
Exploits12References7
exploitpack
exploitpackadded 2014/02/22 12:0 a.m.18 views

ATutor - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

ATutor - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/65744/info ATutor is prone to multiple cross-site scripting vulnerabilities and a HTML-injection vulnerability. Successful exploits will allow attacker-supplied HTML and script code to...

0.4AI score
Exploits0
exploitpack
exploitpackadded 2014/02/12 12:0 a.m.13 views

Rhino - Cross-Site Scripting Password Reset

Rhino - Cross-Site Scripting Password Reset source: https://www.securityfocus.com/bid/65628/info Rhino is prone to a cross-site scripting vulnerability and security-bypass vulnerability . An attacker can exploit these issues to execute arbitrary script code in the context of the vulnerable site,...

Exploits0
Exploit DB
Exploit DBadded 2014/02/05 12:0 a.m.21 views

Singapore 0.9.9b Beta - Image Gallery Remote File Inclusion / Cross-Site Scripting

source: https://www.securityfocus.com/bid/65420/info Singapore Image Gallery is prone to a remote file-include vulnerability and a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2014/01/24 12:0 a.m.19 views

Maian Uploader 4.0 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/65137/info Maian Uploader is prone to multiple security vulnerabilities, including: 1. An SQL-injection vulnerability 2. Multiple cross-site scripting vulnerabilities Attackers can exploit these issues to access or modify data, exploit latent...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2014/01/22 12:0 a.m.21 views

Web Video Streamer - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/65350/info Web Video Streamer is prone to following multiple security vulnerabilities: 1. Multiple cross-site scripting vulnerabilities 2. A directory-traversal vulnerability 3. A command-injection vulnerability A remote attacker can leverage these issues...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2014/01/14 12:0 a.m.29 views

Atmail Webmail Server - Email Body HTML Injection

source: https://www.securityfocus.com/bid/64779/info Atmail Webmail Server is prone to an HTML-injection vulnerability. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2014/01/07 12:0 a.m.33 views

Dredge School Administration System - DSMloader.php Cross-Site Request Forgery (Admin Account Manipulation)

Dredge School Administration System - DSMloader.php Cross-Site Request Forgery Admin Account Manipulation source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site...

0.3AI score
Exploits0
exploitpack
exploitpackadded 2014/01/07 12:0 a.m.22 views

Dredge School Administration System - DSMloader.php?Id SQL Injection

Dredge School Administration System - DSMloader.php?Id SQL Injection source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site request forgery vulnerability 3. A...

0.3AI score
Exploits0
exploitpack
exploitpackadded 2014/01/07 12:0 a.m.16 views

Command School Student Management System - swadmin_generations.php?id SQL Injection

Command School Student Management System - swadmingenerations.php?id SQL Injection source: https://www.securityfocus.com/bid/64707/info Command School Student Management System is prone to the following security vulnerabilities: 1. Multiple SQL-injection vulnerabilities 2. A cross-site request...

0.6AI score
Exploits0
exploitpack
exploitpackadded 2014/01/07 12:0 a.m.13 views

Command School Student Management System - swadmin_media_codes_1.php?id SQL Injection

Command School Student Management System - swadminmediacodes1.php?id SQL Injection source: https://www.securityfocus.com/bid/64707/info Command School Student Management System is prone to the following security vulnerabilities: 1. Multiple SQL-injection vulnerabilities 2. A cross-site request...

0.6AI score
Exploits0
exploitpack
exploitpackadded 2014/01/07 12:0 a.m.12 views

Command School Student Management System - swhealth_allergies.php?id SQL Injection

Command School Student Management System - swhealthallergies.php?id SQL Injection source: https://www.securityfocus.com/bid/64707/info Command School Student Management System is prone to the following security vulnerabilities: 1. Multiple SQL-injection vulnerabilities 2. A cross-site request...

0.6AI score
Exploits0
Rows per page
Query Builder