CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4774 matches found

Exploit DB•added 2006/05/08 12:0 a.m.•30 views

timobraun Dynamic Galerie 1.0 - 'index.php?pfad' Arbitrary Directory Listing

source: https://www.securityfocus.com/bid/17896/info Dynamic Galerie is prone to a directory-traversal vulnerability and a cross-site scripting vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these vulnerabiliti...

Exploit DB•added 2006/05/08 12:0 a.m.•17 views

Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/view.asp?searchFor' SQL Injection

source: https://www.securityfocus.com/bid/17877/info Calendar Manager Pro is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input...

exploitpack•added 2006/05/06 12:0 a.m.•15 views

MyBloggie 2.1.22.1.3 - BBCode IMG Tag HTML Injection

MyBloggie 2.1.22.1.3 - BBCode IMG Tag HTML Injection source: https://www.securityfocus.com/bid/17865/info MyBloggie is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplie...

Exploit DB•added 2006/05/06 12:0 a.m.•23 views

MyBloggie 2.1.2/2.1.3 - BBCode IMG Tag HTML Injection

source: https://www.securityfocus.com/bid/17865/info MyBloggie is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the conte...

exploitpack•added 2006/05/03 12:0 a.m.•14 views

321soft PHP-Gallery 0.9 - index.php?path Arbitrary Directory Listing

321soft PHP-Gallery 0.9 - index.php?path Arbitrary Directory Listing source: https://www.securityfocus.com/bid/17812/info PhP-Gallery is prone to an information-disclosure vulnerability and a cross-site scripting vulnerability. These issues are due to a failure in the application to properly...

exploitpack•added 2006/05/03 12:0 a.m.•9 views

CyberBuild - browse0.htm?ProductIndex SQL Injection

CyberBuild - browse0.htm?ProductIndex SQL Injection source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the applicatio...

exploitpack•added 2006/05/03 12:0 a.m.•13 views

CyberBuild - login.asp?sessionid SQL Injection

CyberBuild - login.asp?sessionid SQL Injection source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to...

exploitpack•added 2006/05/03 12:0 a.m.•11 views

CyberBuild - result.asp Multiple Cross-Site Scripting Vulnerabilities

CyberBuild - result.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure...

securityvulns•added 2006/05/03 12:0 a.m.•27 views

geoBlog Mutiple XSS Vulnerability

Summary: Software: geoBlog Sowtware's Web Site: http://sourceforge.net/projects/bitdamaged/ Versions: MOD1.0 Issue: Our research team has been working arounf on this software since the last 2hrs and have come up succesfully with bug in the product .geoBLog is prone to multiple XSS vulnerability ....

CERT•added 2006/05/03 12:0 a.m.•87 views

Oracle DBMS_EXPORT_EXTENSION package vulnerable to SQL injection

Overview A vulnerability in Oracle PL/SQL Export Extensions may allow an attacker to modify privileged database information. Description Oracle Extensions, ODCIIndex Interface, andODCIIndexGetMetadata Oracle extensions are used to create customized Oracle database constructs. An indextype is an...

10CVSS7.6AI score0.04234EPSS

Exploits0References6

Exploit DB•added 2006/05/03 12:0 a.m.•18 views

CyberBuild - 'result.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

Exploit DB•added 2006/05/03 12:0 a.m.•16 views

MyNews 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17823/info MyNews is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the browser of an...

Exploit DB•added 2006/05/03 12:0 a.m.•23 views

321soft PHP-Gallery 0.9 - 'index.php?path' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17812/info PhP-Gallery is prone to an information-disclosure vulnerability and a cross-site scripting vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these vulnerabiliti...

Exploit DB•added 2006/05/03 12:0 a.m.•25 views

PHP Linkliste 1.0 - 'Linkliste.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17828/info PHP Linkliste is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the browser of an...

exploitpack•added 2006/05/02 12:0 a.m.•13 views

Albinator 2.0.8 - dlisting.php?cid Cross-Site Scripting

Albinator 2.0.8 - dlisting.php?cid Cross-Site Scripting source: https://www.securityfocus.com/bid/17826/info Albinator is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

exploitpack•added 2006/05/02 12:0 a.m.•14 views

ZenPhoto 0.91.0 - index.php Multiple Cross-Site Scripting Vulnerabilities

ZenPhoto 0.91.0 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17779/info Zenphoto is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these...

exploitpack•added 2006/05/02 12:0 a.m.•9 views

JSBoard 2.0.102.0.11 - login.php Cross-Site Scripting

JSBoard 2.0.102.0.11 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17778/info JSBoard is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

exploitpack•added 2006/05/02 12:0 a.m.•11 views

Pinnacle Cart 3.3 - index.php Cross-Site Scripting

Pinnacle Cart 3.3 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17794/info Pinnacle Cart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue t...

Exploit DB•added 2006/05/02 12:0 a.m.•33 views

XDT Pro 2.3 - 'stats.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17781/info XDT Pro is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of a...

exploitpack•added 2006/05/01 12:0 a.m.•13 views

OrbitHYIP 2.0 - members.php?id Cross-Site Scripting

OrbitHYIP 2.0 - members.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/17766/info OrbitHYIP is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage the...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by