CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1492 matches found

exploitpack•added 2008/06/11 12:0 a.m.•16 views

PHPEasyData 1.5.4 - annuaire.php?annuaire SQL Injection

PHPEasyData 1.5.4 - annuaire.php?annuaire SQL Injection source: https://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site...

exploitpack•added 2008/06/11 12:0 a.m.•20 views

PHPEasyData 1.5.4 - adminlogin.php?Username SQL Injection

PHPEasyData 1.5.4 - adminlogin.php?Username SQL Injection source: https://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site...

Exploit DB•added 2008/06/10 12:0 a.m.•21 views

Sun GlassFish 2.1 - 'name' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29646/info Sun Glassfish is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

Exploit DB•added 2008/06/05 12:0 a.m.•19 views

SamTodo 1.1 - 'completed' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29569/info SamTodo is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...

exploitpack•added 2008/05/27 12:0 a.m.•12 views

Tr Script News 2.1 - news.php Cross-Site Scripting

Tr Script News 2.1 - news.php Cross-Site Scripting source: https://www.securityfocus.com/bid/29388/info Tr Script News is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary scri...

Japan Vulnerability Notes•added 2008/05/20 3:0 p.m.•3 views

HP System Management Homepage cross-site scripting vulnerability

Overview A cross-site scripting vulnerability exists in Hewlett-Packard HP System Management Homepage SMH. HP System Management Homepage SMH from Hewlett-Packard is a web-based interface that can manage HP servers. A cross-site scripting vulnerability exists in SMH. It is also confirmed that Comp...

4.3CVSS6.1AI score0.03871EPSS

Exploits0References11

Japan Vulnerability Notes•added 2008/05/20 3:0 p.m.•2 views

Multiple Cybozu products vulnerable to cross-site scripting

Overview Multiple Cybozu products are vulnerable to cross-site scripting. Multiple Cybozu products are vulnerable to cross-site scripting. This vulnerability is different from JVN50342989. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software Apply the...

4.3CVSS6.5AI score

Exploits0References2

Japan Vulnerability Notes•added 2008/05/20 3:0 p.m.•1 views

Rainboard cross-site scripting vulnerability

Overview The Rainboard bulletin board software is vulnerable to cross-site scripting. The Rainboard bulletin board software provided by UDON is vulnerable to cross-site scripting. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software Apply the latest...

4.3CVSS6.4AI score0.01875EPSS

Exploits0References6

Japan Vulnerability Notes•added 2008/05/20 3:0 p.m.•2 views

PerlMailer cross-site scripting vulnerability

Overview PerlMailer is a mail form CGI provided by "Homepage Decorator". A cross-site scripting vulnerability exists in PerlMailer. PerlMailer is a mail form CGI provided by "Homepage Decorator". It is used to send mail from a form on a web page. A cross-site scripting vulnerabiltiy exists in...

4.3CVSS6AI score0.01223EPSS

Exploits0References7

Exploit DB•added 2008/05/12 12:0 a.m.•17 views

PHPInstantGallery 2.0 - 'index.php?Gallery' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29152/info phpInstantGallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

Zero Day Initiative•added 2008/04/08 12:0 a.m.•35 views

Adobe Flash Script Injection Cross Domain Scripting Vulnerability

This vulnerability allows remote attackers to inject scripts across domains through vulnerable versions of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of scripts injected via Flash...

4.3CVSS2AI score0.04891EPSS

Exploits1References1

Exploit DB•added 2008/03/31 12:0 a.m.•285 views

Jax Guestbook 3.31/3.50 - 'jax_Guestbook.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28523/info Jax Guestbook is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...

Exploit DB•added 2008/03/31 12:0 a.m.•195 views

Jack (tR) Jax LinkLists 1.00 - 'jax_linklists.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28518/info Jax LinkLists is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...

Exploit DB•added 2008/03/10 12:0 a.m.•33 views

Gallarific - Multiple Script Direct Request Authentication Bypass

source: https://www.securityfocus.com/bid/28163/info Gallarific is prone to a cross-site scripting vulnerability and multiple authentication-bypass vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

exploitpack•added 2008/02/08 12:0 a.m.•10 views

Calimero.CMS 3.3 - id Cross-Site Scripting

Calimero.CMS 3.3 - id Cross-Site Scripting source: https://www.securityfocus.com/bid/27690/info Calimero.CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...

Exploit DB•added 2007/09/20 12:0 a.m.•21 views

Vigile CMS 1.8 Wiki Module - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25752/info The Vigile CMS wiki module is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

Exploit DB•added 2007/08/27 12:0 a.m.•16 views

AutoIndex PHP Script 2.2.1 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25448/info AutoIndex PHP Script is prone a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

Exploit DB•added 2007/08/21 12:0 a.m.•21 views

ALeadSoft Search Engine Builder - Search.HTML Cross-Site Scripting

source: https://www.securityfocus.com/bid/25391/info ALeadSoft Search Engine Builder is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2007/03/01 12:0 a.m.•32 views

Built2go News Manager 1.0 Blog - 'news.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/22783/info Built2Go News Manager Blog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

exploitpack•added 2007/02/26 12:0 a.m.•23 views

WordPress 2.1.1 - post.php Cross-Site Scripting

WordPress 2.1.1 - post.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22735/info Wordpress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by