Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2026/03/21 3:26 a.m.2 views

CVE-2026-2468 Quentn WP <= 1.2.12 - Unauthenticated SQL Injection via 'qntn_wp_access' Cookie

The Quentn WP plugin for WordPress is vulnerable to SQL Injection via the 'qntnwpaccess' cookie in all versions up to, and including, 1.2.12. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query in the getuseraccess metho...

7.5CVSS5.9AI score0.00102EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/02/21 12:0 a.m.1 views

PMB SQL Injection Vulnerability

PMB is a 100% free document management reference tool from the PMB Services team. A SQL injection vulnerability exists in PMB 7.4.7 and prior versions, which originates from a vulnerability that could allow an unauthenticated, remote attacker to inject arbitrary SQL commands via the PmbOpac-LOGIN...

9.8CVSS8.2AI score0.00366EPSS
Exploits1References2
Cvelist
Cvelistadded 2009/07/14 2:0 p.m.11 views

CVE-2008-6862

Absolute Content Rotator 6.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value...

7.1AI score0.00494EPSS
Exploits1References4
Exploit DB
Exploit DBadded 2007/04/12 12:0 a.m.40 views

RicarGBooK 1.2.1 - &#039;lang&#039; Local File Inclusion

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=- RicarGBooK 1.2.1 -=-=-=-=-=-=-=-=-=-=-=-=D=J=7=X=P=L=-=-=-=-=-=-=-=-=-=-=-=-=- -=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=- Author : Dj7xpl / Dj7xplatYahoodotcom Type : Local File Inclusion Vulnerabilitiy By Cookie...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2004/07/21 12:0 a.m.30 views

Polar Helpdesk 3.0 - Cookie Based Authentication Bypass

Polar Helpdesk 3.0 - Cookie Based Authentication Bypass source: https://www.securityfocus.com/bid/10775/info Polar Helpdesk is reported prone to a cookie based authentication system bypass vulnerability. It is reported that the authentication and privilege system for Polar Helpdesk is based...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2003/06/02 12:0 a.m.32 views

Philboard philboard_admin.ASP Authentication Bypass

The remote host is running Philboard. There is a flaw when handling cookie-based authentication credentials that could allow an attacker to gain unauthorized administrative access or to download the database of the remote server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

5.6AI score
Exploits0References1
NVD
NVDadded 2002/03/29 5:0 a.m.8 views

CVE-2002-0078

The zone determination function in Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to run scripts in the Local Computer zone by embedding the script in a cookie, aka the "Cookie-based Script Execution" vulnerability...

7.5CVSS6.5AI score0.20335EPSS
Exploits0References6
exploitpack
exploitpackadded 2002/01/16 12:0 a.m.15 views

Lucent 8.x - VitalNet Password Authentication Bypass

Lucent 8.x - VitalNet Password Authentication Bypass source: https://www.securityfocus.com/bid/3784/info VitalNet is part of Lucent's VitalSuite SP product family. VitalNet allows users to monitor, analyze, manage and predict the performance of their network infrastructure. The implementation of...

0.3AI score
Exploits0
Rows per page
Query Builder