CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

0day.today•added 2019/01/07 12:0 a.m.•18 views

Embed Video Scripts - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Embed Video Scripts - Cross-site Script stored Exploit Author: Deyaa Muhammad Author EMail: contact at deyaa.me Author Blog: http://deyaa.me POC Video: https://youtu.be/2CFJLwkxpT8 Vendor Homepage: https://codeawesome.in/embed/...

Exploits0

CNVD•added 2018/01/02 12:0 a.m.•1 views

StivaSoft PHPJabbers File Sharing Script Cross-Site Scripting Vulnerability

StivaSoft PHPJabbers File Sharing Script is a set of online file sharing scripts from the Bulgarian company StivaSoft. A cross-site scripting vulnerability exists in the comments section of StivaSoft PHPJabbers File Sharing Script. A remote attacker can exploit this vulnerability to inject...

6.1CVSS6.2AI score0.0024EPSS

Exploits0References1

Cvelist•added 2017/12/30 7:0 a.m.•15 views

CVE-2017-12813

PHPJabbers File Sharing Script 1.0 has stored XSS in the comments section...

6AI score0.0024EPSS

Exploits0References1

Hacker One•added 2016/08/30 7:14 p.m.•13 views

Nextcloud: Reflected Self-XSS Vulnerability in the Comment section of Files (Different-payloads)

Note::steps mentioned in report164027 In the Comments Box,the payload to execute XSS is passed. Test Payloads: alert1 Also the above payload is still working.. Also try this payload " fooalert1 Click edit comment after posted. XSS Triggers...

3AI score

Exploits0

exploitpack•added 2016/06/21 12:0 a.m.•21 views

YetiForce CRM 3.1 - Persistent Cross-Site Scripting

YetiForce CRM 3.1 - Persistent Cross-Site Scripting Exploit Title: YetiForce CRM Accounts' select your prefered user, and then in the 'Comments' section input; Either refresh the current page, or navigate back to 'Accounts'...

6.8AI score

Exploits0

0day.today•added 2015/07/21 12:0 a.m.•18 views

phpVibe 4.20 Stored XSS Vulnerability

Exploit for php platform in category web applications phpVibe The vulnerability exists because the user input is not properly sanitized and this can lead to malicious code injection that will be executed on the target’s browser -- Proof of Concept -- 1. The attacker posts a new comment which...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•36 views

Joomla Health & Fitness Stats Persistent XSS Vulnerability

No description provided by source. Name : Joomla Health & Fitness Stats Persistent XSS Vulnerability Date : july 12,2010 Critical Level : HIGH vendor URL :http://joomla-extensions.instantiate.co.uk/jcomponents/healthstats Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd...

7.1AI score

Exploits0

exploitpack•added 2010/11/28 12:0 a.m.•21 views

Skeletonz CMS - Persistent Cross-Site Scripting

Skeletonz CMS - Persistent Cross-Site Scripting Exploit Title: Xss on skeletonz-simple dynamic cms in the section comments Google Dork: Date: 27/11/10 Author: Jordan Diaz aka Jbyte Software Link: http://orangoo.com/skeletonz/ Version: 1.0 Tested on: Windows xp CVE : The follow xss is located in t...

6.8AI score

Exploits0

0day.today•added 2010/08/21 12:0 a.m.•20 views

StandAloneArcade Script Persistent XSS Vulnerability

Exploit for php platform in category web applications ==================================================== StandAloneArcade Script Persistent XSS Vulnerability ==================================================== AUTHOR : Cur53D MAIL : Hyq6xxatgmail.com DATE : 20,August,2010 Blog :...

7.1AI score

Exploits0

Packet Storm•added 2010/07/13 12:0 a.m.•33 views

Joomla EasyBlog Cross Site Scripting

Name : Joomla EasyBlog Persistent XSS Vulnerability Date : july 12,2010 Critical Level : HIGH vendor URL :http://stackideas.com/products/easyblog.html Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger greetz to...

7.4AI score

Exploits0

Exploit DB•added 2010/07/12 12:0 a.m.•40 views

Joomla! Component EasyBlog - Persistent Cross-Site Scripting

7AI score

Exploits0

0day.today•added 2010/07/12 12:0 a.m.•43 views

Joomla Health & Fitness Stats Persistent XSS Vulnerability

Exploit for php platform in category web applications ========================================================== Joomla Health & Fitness Stats Persistent XSS Vulnerability ==========================================================...

7.1AI score

Exploits0

0day.today•added 2010/07/12 12:0 a.m.•619 views

Joomla EasyBlog Persistent XSS Vulnerability

Exploit for php platform in category web applications ============================================ Joomla EasyBlog Persistent XSS Vulnerability ============================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...

7.1AI score

Exploits0

securityvulns•added 2005/07/06 12:0 a.m.•37 views

[Full-disclosure] Quickblogger

------------------------------------------------------------ - EXPL-A-2005-011 exploitlabs.com Advisory 040 - ------------------------------------------------------------ - QuickBlogger - AFFECTED PRODUCTS ================= QuickBlogger 1.4 and earlier http://www.jlwebworks.net/ OVERVIEW ========...

0.4AI score

Exploits0

Cvelist•added 2005/05/24 4:0 a.m.•13 views

CVE-2005-1715

Cross-site scripting XSS vulnerability in index.php for TOPo 2.2 2.2.178 allows remote attackers to inject arbitrary web script or HTML via the 1 m, 2 s, 3 ID, or 4 t parameters, or the 5 field name, 6 Your Web field, or 7 email field in the comments section...

5.7AI score0.00674EPSS

Exploits1References6

CVE•added 2005/05/24 4:0 a.m.•42 views

CVE-2005-1715

CVE-2005-1715 describes a reflected cross-site scripting vulnerability in TOPo 2.2 (version 2.2.178), specifically in index.php. The issue allows remote attackers to inject arbitrary script/HTML via several inputs in the comments section and related fields: (1) m, (2) s, (3) ID, (4) t, and (5) fi...

4.3CVSS6AI score0.00674EPSS

Exploits1References6Affected Software1

Cvelist•added 2003/04/02 5:0 a.m.•17 views

CVE-2002-0958

Cross-site scripting vulnerability in browse.php for PHPReactor 1.2.7 allows remote attackers to execute script as other users via the go parameter in the comments section...

6.6AI score0.00741EPSS

Exploits0References4

NVD•added 2002/10/04 4:0 a.m.•16 views

CVE-2002-0958

Cross-site scripting vulnerability in browse.php for PHPReactor 1.2.7 allows remote attackers to execute script as other users via the go parameter in the comments section...

7.5CVSS6.6AI score0.00741EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by