Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4774 matches found

Exploit DB
Exploit DBadded 2007/03/16 12:0 a.m.24 views

Oracle Portal 10g - 'P_OldURL' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22999/info Oracle Portal is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/03/16 12:0 a.m.25 views

DirectAdmin 1.292 - 'CMD_USER_STATS' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22996/info DirectAdmin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/03/15 12:0 a.m.19 views

Horde IMP Webmail 4.0.4 Client - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/22975/info Horde IMP Webmail Client is prone to multiple input-validation vulnerabilities, including cross-site scripting and an HTML-injection issue, because the application fails to properly sanitize user-supplied input. Attacker-supplied HTML and scrip...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/03/14 12:0 a.m.15 views

aBitWhizzy - 'whizzypic.php?d' Traversal Arbitrary Directory Listing

source: https://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker could exploit these vulnerabilities to view the directory...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2007/03/06 12:0 a.m.17 views

GLSA-200703-05 : Mozilla Suite: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200703-05 Mozilla Suite: Multiple vulnerabilities Several vulnerabilities ranging from code execution with elevated privileges to information leaks affect the Mozilla Suite. Impact : A remote attacker could entice a user to browse...

6.1AI score
Exploits0References2
Exploit DB
Exploit DBadded 2007/03/02 12:0 a.m.28 views

Woltlab Burning Board 2.3.6 - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/22796/info Woltlab Burning Board is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues may allow an attacker to execute HTML and script code in the context of the...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/03/01 12:0 a.m.16 views

Built2go News Manager 1.0 Blog - rating.php?nid Cross-Site Scripting

Built2go News Manager 1.0 Blog - rating.php?nid Cross-Site Scripting source: https://www.securityfocus.com/bid/22783/info Built2Go News Manager Blog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2007/03/01 12:0 a.m.12 views

Built2go News Manager 1.0 Blog - news.php Multiple Cross-Site Scripting Vulnerabilities

Built2go News Manager 1.0 Blog - news.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/22783/info Built2Go News Manager Blog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker...

7AI score
Exploits0
exploitpack
exploitpackadded 2007/02/26 12:0 a.m.23 views

WordPress 2.1.1 - post.php Cross-Site Scripting

WordPress 2.1.1 - post.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22735/info Wordpress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2007/02/26 12:0 a.m.9 views

Tyger Bug Tracking System 1.1.3 - ViewBugs.php?s SQL Injection

Tyger Bug Tracking System 1.1.3 - ViewBugs.php?s SQL Injection source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2007/02/26 12:0 a.m.14 views

Audins Audiens 3.3 - setup.php?PATH_INFO Cross-Site Scripting

Audins Audiens 3.3 - setup.php?PATHINFO Cross-Site Scripting Audins Audiens is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2007/02/26 12:0 a.m.9 views

Tyger Bug Tracking System 1.1.3 - login.php?PATH_INFO Cross-Site Scripting

Tyger Bug Tracking System 1.1.3 - login.php?PATHINFO Cross-Site Scripting source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/26 12:0 a.m.28 views

Audins Audiens 3.3 - 'setup.php?PATH_INFO' Cross-Site Scripting

Audins Audiens is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/26 12:0 a.m.21 views

Tyger Bug Tracking System 1.1.3 - 'register.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/26 12:0 a.m.16 views

Tyger Bug Tracking System 1.1.3 - 'ViewBugs.php?s' SQL Injection

source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/02/24 12:0 a.m.16 views

Active Calendar 1.2 - datam_2.php?css Cross-Site Scripting

Active Calendar 1.2 - datam2.php?css Cross-Site Scripting source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2007/02/24 12:0 a.m.16 views

Active Calendar 1.2 - dataflatevents.php?css Cross-Site Scripting

Active Calendar 1.2 - dataflatevents.php?css Cross-Site Scripting source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/24 12:0 a.m.32 views

Active Calendar 1.2 - '/data/js.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/24 12:0 a.m.29 views

Active Calendar 1.2 - '/data/mysqlevents.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/24 12:0 a.m.25 views

Active Calendar 1.2 - '/data/m_2.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

7.4AI score
Exploits0
Rows per page
Query Builder