Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Snyk
Snykadded 2025/05/14 7:46 a.m.2 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the confKey parameter. An attacker can execute arbitrary scripts in the context of the victim's browser session by injecting a malicious payload into this parameter. Note: This is only exploitable if the...

7.6CVSS5.6AI score0.00172EPSS
Exploits1References2
securityvulns
securityvulnsadded 2007/02/20 12:0 a.m.44 views

XLAtunes 0.1 (album) Remote SQL Injection Vulnerability

Critical Status:High Found By: 0x90 Download:http://www.scriptdungeon.com/script.php?ScriptID=2844 Greetz:all my friends confkey-Password confvalue-Username Table:config http://host.com/path/?mode=view&album=-120UNION20SELECT20confkey20FROM20config/...

0.5AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/17 12:0 a.m.26 views

XLAtunes 0.1 - 'album' SQL Injection

Critical Status:High Found By:Bl0od3r Download:http://www.scriptdungeon.com/script.php?ScriptID=2844 Greetz:all my friends fuckz:Donh4cky0u for steeling hacks of others,for his 100% noobility,for his noobass.DON your an idiot.fucka. - confkey-Password confvalue-Username Table:config...

7.4AI score
Exploits0
Rows per page
Query Builder