Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/04/30 12:0 a.m.5 views

WordPress plugin Otter Blocks 授权问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

7.5CVSS5.8AI score0.00081EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2019/03/04 12:0 a.m.41 views

Ability Mail Server 4.2.6 Cross Site Scripting

Exploit Title: Persistent Cross Site Scripting Ability Mail Server 4.2.6 CVE: CVE-2019-9557 Exploit Author: Aloyce J. Makalanga Contact: https://twitter.com/aloycemjr Vendor Homepage: https://www.codecrafters.com/AbilityMailServer Category: webapps Attack Type: Remote Impact: Data/Cookie hijackin...

0.1AI score0.00211EPSS
Exploits2
0day.today
0day.todayadded 2018/02/01 12:0 a.m.36 views

IPSwitch MoveIt 9.4 Cross Site Scripting Vulnerability

Exploit for asp platform in category web applications Exploit Title: IPSwitch MoveIt Stored Cross Site Scripting XSS Software Link: https://www.ipswitch.com/moveit Affected Version: 8.1-9.4 only confirmed on 8.1 but other versions prior to 9.5 may also be vulnerable Exploit Author: email protecte...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2009/08/21 12:0 a.m.31 views

Paypal Shopping Cart Script - 'index.php?cid' SQL Injection

source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...

7.4AI score
Exploits0
Prion
Prionadded 2008/08/06 5:41 p.m.16 views

Directory traversal

Directory traversal vulnerability in the usergetprofile function in include/functions.inc.php in Coppermine Photo Gallery CPG 1.4.18 and earlier, when the charset is utf-8, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang part of serialized data in...

7.5CVSS7.3AI score0.03894EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessusadded 2008/08/04 12:0 a.m.242 views

Coppermine Photo Gallery < 1.4.19 data Cookie Local File Inclusion

Binary data 4613.prm...

7.5CVSS7.3AI score0.03894EPSS
Exploits0References2
seebug.org
seebug.orgadded 2008/08/04 12:0 a.m.91 views

Coppermine Photo Gallery lang参数本地文件包含漏洞

BUGTRAQ ID: 30480 Coppermine是用PHP编写的多用途集成Web图形库脚本。 Coppermine Photo Gallery没有正确地过滤对data cookie中编码的lang部分输入便用于包含文件,这允许远程攻击者通过目录遍历攻击和空字节包含本地资源的任意文件。成功攻击要求将字符编码设置为Unicode utf-8,而这是默认配置。 Coppermine Photo Gallery 1.4.18 Coppermine ---------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...

6.9AI score
Exploits0
Rows per page
Query Builder