CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4774 matches found

exploitpack•added 2006/02/22 12:0 a.m.•9 views

Dragonfly CMS 9.0.6 1 News Module - Multiple Cross-Site Scripting Vulnerabilities

Dragonfly CMS 9.0.6 1 News Module - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issu...

Exploit DB•added 2006/02/22 12:0 a.m.•47 views

Dragonfly CMS 9.0.6 1 News Module - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in...

Exploit DB•added 2006/02/22 12:0 a.m.•16 views

myPHPNuke 1.8.8 - 'download.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16815/info MyPHPNuke is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

Exploit DB•added 2006/02/22 12:0 a.m.•15 views

Dragonfly CMS 9.0.6 1 Your_Account Module - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in...

Exploit DB•added 2006/02/22 12:0 a.m.•17 views

Dragonfly CMS 9.0.6.1 Web_Links Module - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in...

Exploit DB•added 2006/02/22 12:0 a.m.•41 views

Dragonfly CMS 9.0.6.1 Coppermine Module - 'album' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in...

exploitpack•added 2006/02/21 12:0 a.m.•15 views

PostNuke 0.6x0.7x NS-Languages Module - language SQL Injection

PostNuke 0.6x0.7x NS-Languages Module - language SQL Injection source: https://www.securityfocus.com/bid/16752/info PostNuke is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation...

Exploit DB•added 2006/02/21 12:0 a.m.•25 views

PostNuke 0.6x/0.7x NS-Languages Module - 'language' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16752/info PostNuke is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation could allow an attacker to compromise the application, access or...

exploitpack•added 2006/02/20 12:0 a.m.•278 views

CuteNews 1.4.1 - show_news.php Cross-Site Scripting

CuteNews 1.4.1 - shownews.php Cross-Site Scripting source: https://www.securityfocus.com/bid/16740/info CuteNews is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generate...

exploitpack•added 2006/02/18 12:0 a.m.•7 views

E107 Website System 0.7.2 Chatbox Plugin - HTML Injection

E107 Website System 0.7.2 Chatbox Plugin - HTML Injection source: https://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied...

exploitpack•added 2006/02/16 12:0 a.m.•11 views

MyBB 1.0.3 - Managegroup.php Cross-Site Scripting

MyBB 1.0.3 - Managegroup.php Cross-Site Scripting source: https://www.securityfocus.com/bid/16692/info MyBB is prone to a cross-site scripting vulnerability.. This issue is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this issue to have arbitrary script co...

Exploit DB•added 2006/02/16 12:0 a.m.•21 views

Siteframe Beaumont 5.0.1/5.0.2 - 'page.php' HTML Injection

source: https://www.securityfocus.com/bid/16695/info Siteframe Beaumont is prone to an HTML-injection vulnerability. The application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the...

exploitpack•added 2006/02/15 12:0 a.m.•8 views

My Blog 1.63 - BBCode HTML Injection

My Blog 1.63 - BBCode HTML Injection source: https://www.securityfocus.com/bid/16659/info My Blog is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

Exploit DB•added 2006/02/15 12:0 a.m.•25 views

Mantis Bug Tracker 0.x/1.0 - 'manage_user_page.php?sort' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16657/info Mantis is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful...

Exploit DB•added 2006/02/15 12:0 a.m.•15 views

HTML::BBCode 1.03/1.04 - HTML Injection

source: https://www.securityfocus.com/bid/16680/info HTML::BBCode is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would ...

exploitpack•added 2006/02/14 12:0 a.m.•9 views

sNews - index.php Multiple SQL Injections

sNews - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/16647/info sNews is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...

Exploit DB•added 2006/02/14 12:0 a.m.•19 views

sNews - 'index.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/16647/info sNews is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could allow an attacker to compromise t...

exploitpack•added 2006/02/13 12:0 a.m.•13 views

Gastebuch 1.3.2 - Cross-Site Scripting

Gastebuch 1.3.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/16615/info Gastebuch is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated HTML...

exploitpack•added 2006/02/13 12:0 a.m.•12 views

Clever Copy 2.03.0 - Multiple HTML Injection Vulnerabilities

Clever Copy 2.03.0 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/16607/info Clever Copy is prone to multiple HTML-injection vulnerabilities. The application fails to properly sanitize user-supplied input before using it in dynamically generated content...

Exploit DB•added 2006/02/13 12:0 a.m.•20 views

Clever Copy 2.0/3.0 - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/16607/info Clever Copy is prone to multiple HTML-injection vulnerabilities. The application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by