CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4774 matches found

seebug.org•added 2014/07/01 12:0 a.m.•20 views

ActiveNews Manager activenews_view.asp articleID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploitin...

seebug.org•added 2014/07/01 12:0 a.m.•20 views

MoinMoin 1.5.x Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23676/info MoinMoin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

seebug.org•added 2014/07/01 12:0 a.m.•10 views

ActiveNews Manager default.asp page Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploitin...

seebug.org•added 2014/07/01 12:0 a.m.•10 views

MyGuestBK Add.asp Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7211/info It has been reported that MyGuestBK does not sufficiently filter user-supplied URI parameters on the MyGuestBK Information Server 'Add Entry' page. It may be possible for a remote attacker to create a malicious...

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Tangora Portal CMS 4.0 Action Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16034/info Tangora Portal CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

seebug.org•added 2014/07/01 12:0 a.m.•11 views

CONTROLzx HMS 3.3.4 dedicated_order.php dedicatedPlanID Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17282/info CONTROLzx HMS is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Cerberus Helpdesk 2.649 cer_KnowledgebaseHandler.class.php _load_article_details Function SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16062/info Cerberus Helpdesk is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are the result of inadequate validation of user-supplied input that will be included in site output or...

seebug.org•added 2014/07/01 12:0 a.m.•8 views

Grandora Rialto 1.6 listfull.asp ID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21191/info Grandora Rialto is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting this issu...

seebug.org•added 2014/07/01 12:0 a.m.•25 views

Grandora Rialto 1.6 searchkey.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21191/info Grandora Rialto is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting this issu...

seebug.org•added 2014/07/01 12:0 a.m.•13 views

PostNuke 0.7x Install Script Administrator Password Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10793/info It is reported that PostNuke may disclose administrator authentication credentials to remote attackers. This issue presents itself because the application fails to remove the install script 'install.php' after...

seebug.org•added 2014/07/01 12:0 a.m.•8 views

Grandora Rialto 1.6 searchoption.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21191/info Grandora Rialto is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting this issu...

seebug.org•added 2014/07/01 12:0 a.m.•10 views

XAMPP Linux 1.6 ming.php text Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/30535/info XAMPP for Linux is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

seebug.org•added 2014/07/01 12:0 a.m.•22 views

PHPBB Photo Album Module 2.0.53 Album_Comment.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13158/info Photo Album is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Juniper Junos 8.5/9.0 J-Web Interface /diagnose Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/36537/info Juniper Networks JUNOS is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data to J-Web Juniper Web Management. Attacker-supplie...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Glassfish Enterprise Server 2.1 Admin Console /configuration/auditModuleEdit.jsf name Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/34824/info GlassFish Enterprise Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attacker-supplied HTML and script code would run in the conte...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

AmpJuke 0.7 'index.php' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27498/info AmpJuke is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

seebug.org•added 2014/07/01 12:0 a.m.•11 views

Foojan PHPWeblog Html Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14658/info Foojan PHPWeblog is prone to an HTML injection vulnerability. This is due to a lack of proper sanitization of user-supplied input. Attacker-supplied HTML and script code would be executed in the context of the...

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Pluck 4.5.2 Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30542/info Pluck is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browse...

seebug.org•added 2014/07/01 12:0 a.m.•11 views

MyBulletinBoard 1.2 Generic_Error.PHP Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20079/info MyBulletinBoard is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to steal cookie-based...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Rapid Classified 3.1 search.asp SH1 Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21197/info Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input. ...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by