CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4774 matches found

Exploit DB•added 2013/05/11 12:0 a.m.•22 views

WordPress Plugin Securimage-WP - 'siwp_test.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/59816/info The Securimage-WP plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2013/05/10 12:0 a.m.•25 views

Securimage - 'example_form.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/59796/info Securimage is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal...

Exploit DB•added 2013/05/01 12:0 a.m.•60 views

GetSimple CMS /admin/filebrowser.php Multiple Parameter XSS

GetSimple CMS /admin/filebrowser.php Multiple Parameter XSS. CVE-2013-1420. Webapps exploit for php platform source: http://www.securityfocus.com/bid/59600/info GetSimple CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. A...

6.1CVSS0.0106EPSS

exploitpack•added 2013/04/14 12:0 a.m.•13 views

Todoo Forum 2.0 - todooforum.php Multiple SQL Injections

Todoo Forum 2.0 - todooforum.php Multiple SQL Injections source: https://www.securityfocus.com/bid/59069/info Todoo Forum is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials,...

Exploit DB•added 2013/04/10 12:0 a.m.•34 views

Hero Framework - '/users/forgot_password?error' Cross-Site Scripting

source: https://www.securityfocus.com/bid/59041/info Hero is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

Exploit DB•added 2013/04/10 12:0 a.m.•24 views

Hero Framework - '/users/login?Username' Cross-Site Scripting

source: https://www.securityfocus.com/bid/59041/info Hero is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

exploitpack•added 2013/04/09 12:0 a.m.•9 views

phpMyAdmin - tbl_gis_visualization.php Multiple Cross-Site Scripting Vulnerabilities

phpMyAdmin - tblgisvisualization.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58962/info phpMyAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage thes...

Exploit DB•added 2013/04/09 12:0 a.m.•23 views

WordPress Plugin Traffic Analyzer - 'aoid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58948/info The Traffic Analyzer plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2013/04/05 12:0 a.m.•50 views

Zimbra - 'aspell.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58913/info Zimbra is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

RedHat Linux•added 2013/04/04 8:16 p.m.•31 views

Important: Red Hat Security Advisory: puppet security update

Updated puppet packages that fix several security issues are now available for Red Hat OpenStack Folsom. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

9CVSS6.3AI score0.04927EPSS

Exploits0References7

exploitpack•added 2013/04/03 12:0 a.m.•13 views

C2 WebResource - File Cross-Site Scripting

C2 WebResource - File Cross-Site Scripting source: https://www.securityfocus.com/bid/58838/info C2 WebResource is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Exploit DB•added 2013/04/03 12:0 a.m.•33 views

C2 WebResource - 'File' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58838/info C2 WebResource is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

Exploit DB•added 2013/04/03 12:0 a.m.•35 views

e107 - 'content_preset.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58841/info e107 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Exploit DB•added 2013/03/30 12:0 a.m.•19 views

WordPress Plugin Feedweb - 'wp_post_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58771/info Feedweb plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

CVE•added 2013/03/29 10:0 a.m.•37 views

CVE-2013-0474

CVE-2013-0474 affects the Manual Explore browser plug-in used with IBM Security AppScan Enterprise (versions 5.6 and 8.x prior to 8.7) and IBM Rational Policy Tester (versions 5.6 and 8.x prior to 8.5.0.4). The vulnerability allows remote attackers to disclose test Platform Authentication credent...

4.3CVSS6.6AI score0.01001EPSS

Exploits0References3Affected Software1

exploitpack•added 2013/03/27 12:0 a.m.•12 views

MyBB 1.6.6 - index.php?conditions[usergroup][] SQL Injection

MyBB 1.6.6 - index.php?conditionsusergroup SQL Injection source: https://www.securityfocus.com/bid/52743/info MyBB is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these vulnerabilities could allow an attacker to execute arbitrary script code, steal...

exploitpack•added 2013/03/25 12:0 a.m.•12 views

WordPress Plugin Banners Lite - wpbanners_show.php HTML Injection

WordPress Plugin Banners Lite - wpbannersshow.php HTML Injection source: https://www.securityfocus.com/bid/58671/info The Banners Lite plugin for WordPress is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Successful exploits will allow...

Exploit DB•added 2013/03/23 12:0 a.m.•21 views

Jaow CMS - 'add_ons' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58658/info Jaow CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal...

exploitpack•added 2013/03/14 12:0 a.m.•10 views

Petite Annonce - Cross-Site Scripting

Petite Annonce - Cross-Site Scripting source: https://www.securityfocus.com/bid/58508/info Petite Annonce is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2013/03/13 12:0 a.m.•22 views

Cisco Video Surveillance Operations Manager - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/58476/info Cisco Video Surveillance Operations Manager is prone to multiple security vulnerabilities, including: 1. Multiple local file-include vulnerabilities 2. A security-bypass vulnerability 3. Multiple cross-site scripting vulnerabilities An attacker...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by