CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10478 matches found

seebug.org•added 2014/07/01 12:0 a.m.•22 views

PHPLive! 3.2.2 'request.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35718/info PHPLive! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•15 views

Community Enterprise 4.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15963/info Community Enterprise is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Simplog 0.9.3 BlogID Parameter Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20899/info Simplog is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•9 views

Nuked-Klan 1.7 Forum Module Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15181/info Nuked Klan is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. These vulnerabilities...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•25 views

CodeWidgets Web Based Alpha Tabbed Address Book Index.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26193/info CodeWidgets Web Based Alpha Tabbed Address Book is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue cou...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Parsi PHP CMS 2.0 'index.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33914/info Parsi PHP CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Tandis CMS 2.5 'index.php' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/31930/info Tandis CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

phpRPG 0.8 /tmp Directory PHPSESSID Cookie Session Hijacking

No description provided by source. source: http://www.securityfocus.com/bid/26884/info phpRPG is prone to two vulnerabilities: - An SQL-injection vulnerability - A vulnerability that lets remote attackers gain access to sessions. Exploiting these issues may allow an unauthorized user to steal...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•15 views

vwdev Index.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16547/info The vwdev application is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. Successful exploitation can allow an attacker to...

7.1AI score

Exploits0

exploitpack•added 2014/06/24 12:0 a.m.•18 views

ZeusCart - prodid SQL Injection

ZeusCart - prodid SQL Injection source: https://www.securityfocus.com/bid/68182/info ZeusCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

0.4AI score

Exploits0

Tenable Nessus•added 2014/06/13 12:0 a.m.•15 views

openSUSE Security Update : opera (openSUSE-SU-2012:1702-1)

Update to 12.12 - Fixes and Stability Enhancements - New option 'Delete settings and data for all extensions' option off by default in the Delete Private Data dialog - Corrected an issue where using the 'Delete Private Data' dialog could delete extension and settings data - Redesigned the 'Delete...

5.8AI score

Exploits0References4

myhack58•added 2014/06/06 12:0 a.m.•31 views

Taobao decoration can reference external js file-bug warning-the black bar safety net

Taobao decoration page for the js filter is not strict you can use user reference to an external js file, you can obtain other Taobao user cookies, modify your own shop reviews, baby sell number and the like. In Taobao decoration page that has a background image uploaded, as long as firebug for...

Exploits0

exploitpack•added 2014/05/08 12:0 a.m.•18 views

CMS Touch - pages.php?Page_ID SQL Injection

CMS Touch - pages.php?PageID SQL Injection source: https://www.securityfocus.com/bid/67377/info CMS Touch is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the...

0.1AI score

Exploits0

Exploit DB•added 2014/05/08 12:0 a.m.•22 views

CMS Touch - 'pages.php?Page_ID' SQL Injection

source: https://www.securityfocus.com/bid/67377/info CMS Touch is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit...

7.4AI score

Exploits0

exploitpack•added 2014/05/07 12:0 a.m.•13 views

Caldera - costview2jobs.php?tr SQL Injection

Caldera - costview2jobs.php?tr SQL Injection source: https://www.securityfocus.com/bid/67256/info Caldera is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attack...

0.7AI score

Exploits0

exploitpack•added 2014/05/07 12:0 a.m.•8 views

Caldera - costview2printers.php?tr SQL Injection

Caldera - costview2printers.php?tr SQL Injection source: https://www.securityfocus.com/bid/67256/info Caldera is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an...

0.7AI score

Exploits0

Exploit DB•added 2014/05/07 12:0 a.m.•24 views

Caldera - '/costview2/jobs.php?tr' SQL Injection

source: https://www.securityfocus.com/bid/67256/info Caldera is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

7.4AI score

Exploits0

Exploit DB•added 2014/05/07 12:0 a.m.•27 views

Caldera - '/costview2/printers.php?tr' SQL Injection

7AI score

Exploits0

exploitpack•added 2014/04/22 12:0 a.m.•17 views

iDevAffiliate - idevads.php SQL Injection

iDevAffiliate - idevads.php SQL Injection source: https://www.securityfocus.com/bid/67031/info iDevAffiliate is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

0.9AI score

Exploits0

Check Point Advisories•added 2014/04/16 12:0 a.m.•2 views

Microsoft Office Excel SerAuxTrend Record Remote Code Execution (MS11-045) - Ver2 (CVE-2011-1274)

This is a remote code execution vulnerability. When Microsoft Excel validates record information upon opening a specially crafted Excel file, a memory handling error may corrupt system memory in such a way that an attacker could execute arbitrary code. Successful exploitation of this vulnerabilit...

9.3CVSS7.3AI score0.1332EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by