CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

OSV•added 2025/12/24 11:15 p.m.•1 views

CVE-2025-15073

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contactus.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

9.8CVSS5.7AI score

Exploits0References5

CVE•added 2025/12/24 11:2 p.m.•5 views

CVE-2025-15073

CVE-2025-15073 affects itsourcecode Online Frozen Foods Ordering System 1.0. A SQL injection vulnerability exists in the contact_us.php handling of the Name parameter, with remote exploitation reported and public disclosure of the exploit. Several connected sources consistently cite the issue in ...

9.8CVSS6.6AI score0.00008EPSS

Exploits1References5Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-6834

Malware in sbrugna...

6.8CVSS6.4AI score0.00458EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-0459

Malware in sbrugna...

4.3CVSS6.4AI score0.00297EPSS

Exploits0References2

Openbugbounty•added 2018/09/01 4:38 p.m.•7 views

movedancewear.com XSS vulnerability

Open Bug Bounty ID: OBB-671915 Description| Value ---|--- Affected Website:| movedancewear.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0

Openbugbounty•added 2018/06/26 2:18 p.m.•12 views

majanopools.com XSS vulnerability

Open Bug Bounty ID: OBB-636901 Description| Value ---|--- Affected Website:| majanopools.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0

Openbugbounty•added 2017/12/28 4:38 a.m.•11 views

cubancigarclub.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-462415 Description| Value ---|--- Affected Website:| cubancigarclub.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

6.4AI score

Exploits0

Openbugbounty•added 2017/07/05 2:4 p.m.•7 views

shelterlistings.org XSS vulnerability

Vulnerable URL: http://www.shelterlistings.org/contactus.php?shelter=1"...

6.9AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

PG eLMS Pro vDEC_2007_01 (contact_us.php) Multiple POST XSS Vulnerabilities

No description provided by source. !-- PG eLMS Pro vDEC200701 contactus.php Multiple POST XSS Vulnerabilities Vendor: PilotGroup Ltd Product web page: http://www.elmspro.com Affected version: DEC200701 Summary: eLMS Pro solution is an outstanding and yet simple Learning Management system. Our...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

OSCommerce 2.2 Contact_us.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12568/info A vulnerability is reported to exist in osCommerce that may allow a remote user to launch cross-site scripting attacks. This issue could permit a remote attacker to create a malicious URI link that includes...

7.1AI score

Exploits0

exploitpack•added 2011/07/14 12:0 a.m.•13 views

PG eLms Pro vDEC_2007_01 - contact_us.php Multiple POST Cross-Site Scripting Vulnerabilities

PG eLms Pro vDEC200701 - contactus.php Multiple POST Cross-Site Scripting Vulnerabilities PG eLMS Pro vDEC200701 contactus.php Multiple POST XSS Vulnerabilities scrip...

0.2AI score

Exploits0

0day.today•added 2011/07/14 12:0 a.m.•14 views

PG eLMS Pro vDEC_2007_01 (contact_us.php) Multiple POST XSS

Exploit for php platform in category web applications PG eLMS Pro vDEC200701 contactus.php Multiple POST XSS Vulnerabilities body bgcolo...

7.1AI score

Exploits0

CVE•added 2007/01/04 2:0 a.m.•39 views

CVE-2006-6851

The CVE-2006-6851 entry documents multiple XSS vulnerabilities in ac4p Mobilelib gold 2, specifically in contact_us.php, exploitable via the (1) email and (2) errr parameters. Affected software is the Mobilelib gold 2 package; the underlying issue is improper input handling in contact_us.php that...

6.8CVSS6AI score0.00458EPSS

Exploits0References4Affected Software1

Cvelist•added 2007/01/04 2:0 a.m.•12 views

CVE-2006-6851

Multiple cross-site scripting XSS vulnerabilities in contactus.php in ac4p Mobilelib gold 2 allow remote attackers to inject arbitrary web script or HTML via the 1 email or 2 errr parameter...

5.8AI score0.00458EPSS

Exploits0References4

NVD•added 2006/12/31 5:0 a.m.•8 views

CVE-2006-6851

Multiple cross-site scripting XSS vulnerabilities in contactus.php in ac4p Mobilelib gold 2 allow remote attackers to inject arbitrary web script or HTML via the 1 email or 2 errr parameter...

6.8CVSS5.8AI score0.00458EPSS

Exploits0References4

Packet Storm•added 2006/12/30 12:0 a.m.•23 views

mobilelib-xss.txt

///////////////////////////////////// // XSS in script Mobilelib GOLD v2 // //////////////////////////////////// Found By: viP HaCKEr Tame : AL-GaRNi Vendor: http://www.ac4p.com Software: Mobilelib GOLD GOLD v2 google : "Powered by ac4p.com" :::::::::::::::::::::::::::::::::::::: Description: Lin...

7.4AI score

Exploits0

securityvulns•added 2006/12/30 12:0 a.m.•44 views

XSS in script Mobilelib GOLD v2

0.5AI score

Exploits0

Tenable Nessus•added 2005/02/16 12:0 a.m.•76 views

osCommerce contact_us.php enquiry Parameter XSS

The installed version of OSCommerce is vulnerable to a cross-site scripting XSS attack. An attacker, exploiting this flaw, would need to be able to coerce an unsuspecting user into visiting a malicious website. Upon successful exploitation, the attacker would potentially be able to steal...

4.3CVSS5.6AI score0.00297EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by