CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Github Security Blog•added 2026/05/19 8:29 p.m.•10 views

Caddy Defender trusted proxy client IP bypass

Impact Caddy Defender used r.RemoteAddr when evaluating whether a request should be blocked. RemoteAddr is the address of the immediate peer connected to Caddy. In deployments where Caddy is behind a trusted proxy, CDN, or load balancer, the immediate peer is usually the proxy, not the original...

5.8AI score

Exploits0References3Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-7053

Malware in sbrugna...

7.5CVSS6.4AI score0.02365EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-3303

Malware in sbrugna...

6.8CVSS6.4AI score0.0034EPSS

Exploits1References6

CNVD•added 2020/03/27 12:0 a.m.•2 views

Huawei Desktop Cloud Windows Virtual Desktop Agent Service hdpCommunication application suffers from denial of service vulnerability (CNVD-2020-27176)

Founded in 1987, Huawei Technologies Co. Ltd. is a global provider of ICT information and communications infrastructure and smart terminals. A denial-of-service vulnerability exists in the hdpCommunication application of the Windows virtual desktop proxy service of Huawei Desktop Cloud, where an...

6.8AI score

Exploits0

Cvelist•added 2014/02/11 5:0 p.m.•27 views

CVE-2014-1401

Multiple SQL injection vulnerabilities in AuraCMS 2.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 search parameter to mod/content/content.php or 2 CLIENTIP, 3 XFORWARDEDFOR, 4 XFORWARDED, 5 FORWARDEDFOR, or 6 FORWARDED HTTP header to index.php...

8AI score0.02298EPSS

Exploits5References8

myhack58•added 2012/08/31 12:0 a.m.•31 views

BlueCMS - PHP local portal system 0day large collection of-vulnerability warning-the black bar safety net

Bluecms is from a company tutorial to see the cms, and then thought, since there, used to do tutorials, I'll dig this set of cms vulnerabilities, I did not dig deep end, also failed to adhere to the code to see finished. It has been found that a lot of problems. Can actually get a shell on it. !...

0.4AI score

Exploits0

NVD•added 2009/09/23 12:8 p.m.•8 views

CVE-2009-3321

SQL injection vulnerability in SaphpLesson 4.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the CLIENTIP HTTP header...

6.8CVSS8.3AI score0.0034EPSS

Exploits1References5

Prion•added 2009/09/23 12:8 p.m.•10 views

Sql injection

SQL injection vulnerability in SaphpLesson 4.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the CLIENTIP HTTP header...

6.8CVSS9.1AI score0.0034EPSS

Exploits1References5Affected Software1

Cvelist•added 2009/09/23 10:0 a.m.•14 views

CVE-2009-3321

SQL injection vulnerability in SaphpLesson 4.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the CLIENTIP HTTP header...

8.3AI score0.0034EPSS

Exploits1References5

seebug.org•added 2007/04/12 12:0 a.m.•24 views

MyBulletinBoard (MyBB) <= 1.2.2 (CLIENT-IP) SQL Injection Exploit

No description provided by source. !/usr/bin/perl LOGO Mybb = 1.2.2 Remote SQL Injecton Exploit v.2.0 uused: SQL CLIENTIP vulnerability !need: Mysql = 4.1 wwork: blind sql-inj ggoogle: Powered By MyBB coded by Elekt antichat.ru Coments ÐžÐ¿Ð¸ÑÐ°Ð½Ð¸Ðµ: Ð Ð°Ð±Ð¾Ñ‚Ð° ÑÐºÑÐ¿Ð»Ð¾Ð¹Ñ‚Ð°...

7.1AI score

Exploits0

NVD•added 2007/03/02 9:18 p.m.•7 views

CVE-2006-7071

SQL injection vulnerability in classes/classsession.php in Invision Power Board IPB 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENTIP parameter...

7.5CVSS8.4AI score0.02365EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by