CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

10447 matches found

Exploit DB•added 2011/07/11 12:0 a.m.•17 views

ICMusic 1.2 - 'music_id' SQL Injection

source: https://www.securityfocus.com/bid/48639/info ICMusic is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data,...

Exploit DB•added 2011/06/27 12:0 a.m.•21 views

MySQLDriverCS 4.0.1 - SQL Injection

source: https://www.securityfocus.com/bid/48466/info MySQLDriverCS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or...

exploitpack•added 2011/06/27 12:0 a.m.•12 views

Joomla! Component com_morfeoshow - idm SQL Injection

Joomla! Component commorfeoshow - idm SQL Injection source: https://www.securityfocus.com/bid/48452/info The 'commorfeoshow' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting th...

Exploit DB•added 2011/06/19 12:0 a.m.•28 views

Nibbleblog 3 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/48339/info Nibbleblog is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, acce...

Exploit DB•added 2011/06/18 12:0 a.m.•13 views

Immophp 1.1.1 - Cross-Site Scripting / SQL Injection

source: https://www.securityfocus.com/bid/48341/info Immophp is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-base...

Prion•added 2011/06/14 5:55 p.m.•17 views

Code injection

Unspecified vulnerability in HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allows remote attackers to modify data or obtain sensitive information via unknown vectors...

8.3CVSS6.8AI score0.02313EPSS

Exploits0References6Affected Software2

CVE•added 2011/06/14 5:0 p.m.•45 views

CVE-2011-1861

The CVE-2011-1861 entry concerns HP Service Manager (versions 7.02, 7.11, 9.20, 9.21) and HP Service Center 6.2.8. The connected HP security bulletin documents the vulnerabilities as enabling unauthorized remote access and related issues, with CVSS v2 base score 8.3 (high) and impact to confident...

8.3CVSS6.4AI score0.02313EPSS

Exploits0References6Affected Software2

exploitpack•added 2011/06/13 12:0 a.m.•10 views

WebFileExplorer 3.6 - user pass SQL Injection

WebFileExplorer 3.6 - user pass SQL Injection source: https://www.securityfocus.com/bid/48233/info WebFileExplorer is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow a...

exploitpack•added 2011/06/08 12:0 a.m.•15 views

WordPress Plugin GD Star Rating - votes SQL Injection

WordPress Plugin GD Star Rating - votes SQL Injection source: https://www.securityfocus.com/bid/48166/info The GD Star Rating plugin for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting th...

Exploit DB•added 2011/06/08 12:0 a.m.•29 views

WordPress Plugin GD Star Rating - 'votes' SQL Injection

source: https://www.securityfocus.com/bid/48166/info The GD Star Rating plugin for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

exploitpack•added 2011/06/06 12:0 a.m.•19 views

PopScript - index.php Multiple Input Validation Vulnerabilities

PopScript - index.php Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/48113/info PopScript is prone to a remote file-include vulnerability, an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize...

exploitpack•added 2011/06/06 12:0 a.m.•15 views

Joomla! Component CCBoard - SQL Injection Arbitrary File Upload

Joomla! Component CCBoard - SQL Injection Arbitrary File Upload source: https://www.securityfocus.com/bid/48108/info http://www.noticeboardpro.com/notice-board-pro-copyright.htmlJoomla CCBoard is prone to an SQL-injection vulnerability and an arbitrary-file-upload vulnerability because it fails t...

Exploit DB•added 2011/06/06 12:0 a.m.•23 views

Joomla! Component CCBoard - SQL Injection / Arbitrary File Upload

source: https://www.securityfocus.com/bid/48108/info http://www.noticeboardpro.com/notice-board-pro-copyright.htmlJoomla CCBoard is prone to an SQL-injection vulnerability and an arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could all...

Exploit DB•added 2011/06/01 12:0 a.m.•24 views

TEDE Simplificado 1.01/S2.04 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/48067/info TEDE Simplificado is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the applicatio...

securityvulns•added 2011/05/25 12:0 a.m.•60 views

ruby multiple security vulnerabilities

Crossite scripting, privilege escalation, Exceptiontos method data modification, VpMemAlloc memory corruption...

6.8CVSS2.2AI score0.03025EPSS

Exploits2References1Affected Software1

OpenVAS•added 2011/05/11 12:0 a.m.•25 views

Chipmunk Pwngame Multiple SQLi Vulnerabilities

Chipmunk Pwngame is prone to multiple SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.7AI score0.01082EPSS

Exploits1References3

Exploit DB•added 2011/05/10 12:0 a.m.•17 views

Calendarix 0.8.20080808 - Multiple Cross-Site Scripting / SQL Injections

source: https://www.securityfocus.com/bid/47790/info Calendarix is prone to multiple cross-site scripting vulnerabilities and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal...

exploitpack•added 2011/05/07 12:0 a.m.•12 views

e107 0.7.25 - news.php SQL Injection

e107 0.7.25 - news.php SQL Injection source: https://www.securityfocus.com/bid/47750/info e107 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

CVE•added 2011/04/29 10:0 p.m.•45 views

CVE-2011-1535

HP Insight Control for Linux (IC-Linux) prior to version 6.3 is affected by CVE-2011-1535. The vulnerability allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via unknown vectors (as per HP and NVD records). A security bulletin (HPSBMA026...

6CVSS6.5AI score0.0177EPSS

Exploits0References5Affected Software1

exploitpack•added 2011/04/21 12:0 a.m.•13 views

LightNEasy 3.2.3 - userhandle Cookie SQL Injection

LightNEasy 3.2.3 - userhandle Cookie SQL Injection source: https://www.securityfocus.com/bid/47541/info LightNEasy is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by