CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

10472 matches found

Exploit DB•added 2012/09/03 12:0 a.m.•32 views

Sitemax Maestro - SQL Injection / Local File Inclusion

source: https://www.securityfocus.com/bid/55386/info Sitemax Maestro is prone to SQL-injection and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data,...

exploitpack•added 2012/08/22 12:0 a.m.•10 views

1024 CMS 2.1.1 - p SQL Injection

1024 CMS 2.1.1 - p SQL Injection source: https://www.securityfocus.com/bid/55170/info 1024 CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

exploitpack•added 2012/08/22 12:0 a.m.•13 views

Jara 1.6 - Multiple SQL Injections Multiple Cross-Site Scripting Vulnerabilities

Jara 1.6 - Multiple SQL Injections Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55145/info Jara is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied...

Exploit DB•added 2012/08/22 12:0 a.m.•24 views

Jara 1.6 - Multiple SQL Injections / Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55145/info Jara is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

Exploit DB•added 2012/08/22 12:0 a.m.•24 views

OrderSys 1.6.4 - Multiple SQL Injections / Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55147/info OrderSys is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

UbuntuCve•added 2012/08/17 12:0 a.m.•24 views

CVE-2012-3488

The libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to...

4.9CVSS7AI score0.03297EPSS

Exploits1References3

CVE•added 2012/08/16 10:0 a.m.•44 views

CVE-2012-2283

The CVE-2012-2283 entry affects Iomega network storage devices running EMC Lifeline firmware: Home Media Network Hard Drive (before 2.104), Cloud Edition (before 3.2.3.15290), iConnect (before 2.5.26.18966), StorCenter (before 2.0.18.23122; 2.1.x before 2.1.42.18967; 3.x before 3.2.3.15290). A vu...

5.5CVSS6.6AI score0.0094EPSS

Exploits0References1Affected Software2

exploitpack•added 2012/08/09 12:0 a.m.•15 views

Hotel Booking Portal 0.1 - Multiple SQL Injections Cross-Site Scripting

Hotel Booking Portal 0.1 - Multiple SQL Injections Cross-Site Scripting source: https://www.securityfocus.com/bid/54980/info Hotel Booking Portal is prone to multiple SQL-injection vulnerabilities and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied...

Exploit DB•added 2012/08/09 12:0 a.m.•20 views

Hotel Booking Portal 0.1 - Multiple SQL Injections / Cross-Site Scripting

source: https://www.securityfocus.com/bid/54980/info Hotel Booking Portal is prone to multiple SQL-injection vulnerabilities and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

Exploit DB•added 2012/08/07 12:0 a.m.•28 views

Dir2web - '/system/src/dispatcher.php?oid' SQL Injection

source: https://www.securityfocus.com/bid/54845/info Dir2web is prone to multiple security vulnerabilities, including an SQL-Injection vulnerability and an information-disclosure vulnerability. Successfully exploiting these issues allows remote attackers to compromise the software, retrieve...

Exploit DB•added 2012/08/06 12:0 a.m.•22 views

YT-Videos Script - 'id' SQL Injection

source: https://www.securityfocus.com/bid/54859/info YT-Videos Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify...

exploitpack•added 2012/08/04 12:0 a.m.•8 views

Open Constructor - datafileedit.php?result Cross-Site Scripting

Open Constructor - datafileedit.php?result Cross-Site Scripting source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an...

exploitpack•added 2012/08/04 12:0 a.m.•12 views

Open Constructor - confirm.php?q Cross-Site Scripting

Open Constructor - confirm.php?q Cross-Site Scripting source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to...

Exploit DB•added 2012/08/02 12:0 a.m.•21 views

WordPress Theme ShopperPress - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/55062/info The ShopperPress WordPress theme is prone to an SQL-injection and multiple cross-site vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow an attacker to steal cookie-based authentication...

exploitpack•added 2012/08/01 12:0 a.m.•8 views

ManageEngine Applications Manager - Multiple SQL Injections

ManageEngine Applications Manager - Multiple SQL Injections source: https://www.securityfocus.com/bid/54756/info ManageEngine Applications Manager is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL...

OpenVAS•added 2012/07/30 12:0 a.m.•35 views

CentOS Update for java CESA-2012:0135 centos6

Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2012:0135 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

10CVSS0.4AI score0.68914EPSS

Exploits7References2

exploitpack•added 2012/07/25 12:0 a.m.•13 views

Joomla! Component Odudeprofile 2.8 - profession SQL Injection

Joomla! Component Odudeprofile 2.8 - profession SQL Injection source: https://www.securityfocus.com/bid/54677/info Odudeprofile Component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit m...

Exploit DB•added 2012/07/25 12:0 a.m.•16 views

tekno.Portal 0.1b - 'anket.php' SQL Injection

source: https://www.securityfocus.com/bid/54698/info tekno.Portal is prone to an SQL-injection vulnerability. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. tekno.Portal 0.1b is...

Exploit DB•added 2012/07/25 12:0 a.m.•24 views

Joomla! Component Odudeprofile 2.8 - 'profession' SQL Injection

source: https://www.securityfocus.com/bid/54677/info Odudeprofile Component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or...

exploitpack•added 2012/07/24 12:0 a.m.•13 views

phpProfiles - Multiple Vulnerabilities

phpProfiles - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/54660/info phpProfiles is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to execute malicious code...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by