Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2026/01/07 11:52 p.m.3 views

CVE-2026-21875 ClipBucket v5 Vulnerable to Blind SQL Injection through Channel Comments

ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-187 and below allow an attacker to perform Blind SQL Injection through the add comment section within a channel. When adding a comment within a channel, there is a POST request to the /actions/ajax.php endpoint. The objid...

9.8CVSS7.5AI score0.0006EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2006-4082

Malware in sbrugna...

4.3CVSS6.4AI score0.00527EPSS
Exploits0References8
OSV
OSVadded 2025/06/26 4:15 p.m.2 views

CVE-2025-6702

A vulnerability, which was classified as problematic, was found in linlinjava litemall 1.8.0. Affected is an unknown function of the file /wx/comment/post. The manipulation of the argument adminComment leads to improper authorization. It is possible to launch the attack remotely. The exploit has...

5.3CVSS6.5AI score
Exploits0References5
CNNVD
CNNVDadded 2025/06/26 12:0 a.m.1 views

litemall 安全漏洞

litemall is a small shopping mall system for linlinjava individual developers. A security vulnerability exists in litemall version 1.8.0, which stems from improper authorization due to misuse of the parameter adminComment in the file /wx/comment/post...

5.3CVSS4.9AI score0.00329EPSS
Exploits1References4
Veracode
Veracodeadded 2017/06/07 6:6 a.m.20 views

Multiple Open Redirect Vulnerabilities

Moodle is vulnerable to multiple open redirect vulnerabilities. The vulnerabilities exist because of insufficient filtering of return URLs on some pages, leading to redirection to other arbitrary sites. It can also result in phishing attacks through 1 backup/backupfilesedit.php, 2...

5.8CVSS6.5AI score0.00253EPSS
Exploits0References4Affected Software1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.17 views

ASPNuke <= 0.80 (comment_post.asp) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w SQL Injection Exploit for ASPNuke = 0.80 This exploit retrieve the username of the administrator of the board and his password crypted in SHA256 Related advisory: http://www.securityfocus.com/archive/1/403479/30/0/threaded Discovered and Coded ...

7.1AI score
Exploits0
Cvelist
Cvelistadded 2013/01/27 10:0 p.m.17 views

CVE-2012-6101

Multiple open redirect vulnerabilities in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors related to 1 backup/backupfilesedit.php, 2 comment/commentpost.php, 3...

6.7AI score0.00253EPSS
Exploits0References3
CVE
CVEadded 2006/08/11 10:0 a.m.39 views

CVE-2006-4090

CVE-2006-4090 describes a cross-site scripting (XSS) vulnerability in Webligo BlogHoster 2.2. The issue arises in the comment posting flow, likely involving the nickname parameter in previewcomment.php and the From: part of the comment post, allowing remote attackers to inject arbitrary web scrip...

4.3CVSS6AI score0.00527EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2006/08/11 10:0 a.m.16 views

CVE-2006-4090

Cross-site scripting XSS vulnerability in Webligo BlogHoster 2.2 allows remote attackers to inject arbitrary web script or HTML via the "From: part of the comment post," probably involving the nickname parameter to previewcomment.php...

5.7AI score0.00527EPSS
Exploits0References7
Rows per page
Query Builder