CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4048 matches found

Exploit DB•added 2014/07/17 12:0 a.m.•27 views

OL-Commerce - '/OL-Commerce/affiliate_signup.php?a_country' SQL Injection

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

seebug.org•added 2014/07/01 12:0 a.m.•12 views

WebWiz Forums Search_form.ASP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16196/info WebWiz Forums is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

seebug.org•added 2014/07/01 12:0 a.m.•15 views

Horde Turba 3.1.7 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/29213/info Horde Turba is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

seebug.org•added 2014/07/01 12:0 a.m.•21 views

Philboard 1.14 philboard_admin.ASP Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7739/info A vulnerability has been discovered in the 'philboardadmin.asp' script used by Philboard. The problem occurs during authentication and may allow an attacker to gain unauthorized administrative access. The issue...

seebug.org•added 2014/07/01 12:0 a.m.•11 views

PHP-Nuke 5.x/6.0/6.5 BETA 1 Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/6244/info everal cross site scripting vulnerabilities have been reported for PHP-Nuke. An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link. Attacker-supplied HTML and script cod...

seebug.org•added 2014/07/01 12:0 a.m.•29 views

Webmin 0.x Script Code Input Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4329/info Webmin is a web-based interface for system administration of Unix and Linux operating systems. Webmin does not filter script code from output that may be displayed by the web interface, such as log files, etc...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

SurfControl SuperScout Email Filter 3.5 MsgError.ASP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5928/info SurfControl SuperScout Email Filter comes with a web-based interface to provide remote access to administrative facilities. The web-based admin interface is prone to cross-site scripting attacks. It is possible ...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

TikiWiki 1.9 tiki-lastchanges.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18143/info TikiWiki is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

seebug.org•added 2014/07/01 12:0 a.m.•21 views

EVA-Web 2.1.2 article-album.php3 debut_image Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18161/info EVA-Web is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Blue Coat Reporter 7.0/7.1 License HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13725/info Blue Coat Reporter is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

seebug.org•added 2014/07/01 12:0 a.m.•11 views

wwwstats 3.21 Clickstats.PHP Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26759/info The 'wwwstats' program is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues may allow an attacker to execute HTML and...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Nucleus CMS <= 3.22 'action.php' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27492/info Nucleus CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

seebug.org•added 2014/07/01 12:0 a.m.•11 views

Phorum 5.1.20 admin.php module[] Variable Path Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the...

seebug.org•added 2014/07/01 12:0 a.m.•10 views

CityPost PHP Image Editor M1 URI Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13256/info CityPost Image Cropper/Resizer is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'image-editor-52.php' script...

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Faq-O-Matic 2.711 Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/16251/info Faq-O-Matic is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to hav...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Softbiz Classifieds Script gallery.php radio Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/32569/info Softbiz Classifieds Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary scri...

seebug.org•added 2014/07/01 12:0 a.m.•30 views

IPortalX forum/login_user.asp Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27044/info iPortalX is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...

seebug.org•added 2014/07/01 12:0 a.m.•27 views

Bitrix Site Manager 6/7 Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/33689/info Bitrix Site Manager is prone to multiple input-validation vulnerabilities: - An authentication-bypass vulnerability - A cross-site scripting vulnerability An attacker may leverage these issues to gain...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Apache MyFaces Tomahawk JSF Framework 1.1.5 Autoscroll Parameter Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24480/info Apache Tomahawk MyFaces JSF Framework is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to launch...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

e107 website system 0.7.5 download.php Query String (PATH_INFO) Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this issue to have arbitrary script code execute in the...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by