Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Cvelist
Cvelistadded 2007/10/29 8:0 p.m.20 views

CVE-2007-5692

Multiple cross-site scripting XSS vulnerabilities in SiteBar 3.3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter to integrator.php; 2 the token parameter in a New Password action, 3 the nidacl parameter in a Folder Properties action, or 4 the uid parameter...

5.4AI score0.05615EPSS
Exploits1References14
CVE
CVEadded 2007/10/29 8:0 p.m.70 views

CVE-2007-5695

CVE-2007-5695 is a real issue in SiteBar 3.3.x where an error in command.php allows remote attackers to redirect users to arbitrary websites via the forward parameter in a Log In action. Public sources (Debian, Gentoo GLSA, and OpenVAS) corroborate a family of related sitebar vulnerabilities, wit...

6.4CVSS6.3AI score0.00947EPSS
Exploits1References10Affected Software1
Cvelist
Cvelistadded 2007/10/29 8:0 p.m.22 views

CVE-2007-5695

Open redirect vulnerability in command.php in SiteBar 3.3.8 allows remote attackers to redirect users to arbitrary web sites via a URL in the forward parameter in a Log In action...

6.3AI score0.00947EPSS
Exploits1References10
exploitpack
exploitpackadded 2007/10/18 12:0 a.m.13 views

SiteBar 3.3.8 - command.php?Modify User Action uid Cross-Site Scripting

SiteBar 3.3.8 - command.php?Modify User Action uid Cross-Site Scripting source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2006/09/19 12:0 a.m.34 views

Digital WebShop 1.128 - Multiple Remote File Inclusions

Title : Digital WebShop = v1.128 Multiple Remote File Include Vulnerabilities Author : ajann Script Page : http://digitalwebshop.dyndns.org Exploit; Files rechnung.php prepend.php /Files Code,1 prepend.php Error: // include Werzeuge .. .... requireonce$PHPLIB"libdir" . "phpDB-mysql.lib"; / Mysql...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/09/19 12:0 a.m.32 views

BCWB 0.99 - 'ROOT_PATH' Remote File Inclusion

Title : Bcwb 0.99rootpathRemote File Include Vulnerability Author : ajann Greetz : shadow and Suskun for host : Exploit; File startup.inc.php /File Code,1 startup.inc.php Error: .. .... // Debug services include$rootpath.'include/startup/debug.inc.php';...

7.4AI score
Exploits0
UbuntuCve
UbuntuCveadded 2006/06/30 1:5 a.m.27 views

CVE-2006-3320

Cross-site scripting XSS vulnerability in command.php in SiteBar 3.3.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the command parameter...

2.6CVSS6.1AI score0.01357EPSS
Exploits2References1
NVD
NVDadded 2006/06/30 1:5 a.m.9 views

CVE-2006-3320

Cross-site scripting XSS vulnerability in command.php in SiteBar 3.3.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the command parameter...

2.6CVSS5.7AI score0.01357EPSS
Exploits2References13
Rows per page
Query Builder