CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10445 matches found

Prion•added 2010/07/15 12:57 p.m.•19 views

Code injection

Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors...

3.6CVSS6.6AI score0.00468EPSS

Exploits0References4Affected Software1

Prion•added 2010/07/15 12:57 p.m.•8 views

Design/Logic Flaw

Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify data via unknown vectors...

7.5CVSS7.1AI score0.02459EPSS

Exploits0References4Affected Software1

CVE•added 2010/07/14 6:31 p.m.•47 views

CVE-2010-1965

HP Insight Orchestration for Windows before version 6.1 is affected by CVE-2010-1965, a remote unauthorized access vulnerability allowing reading or modification of data. The HP security bulletin states the issue is fixed in HP Insight Orchestration v6.1 and later; patch accordingly to remediate....

7.5CVSS6.8AI score0.02459EPSS

Exploits0References4Affected Software1

Cvelist•added 2010/07/14 6:31 p.m.•16 views

CVE-2010-1965

Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify data via unknown vectors...

6.6AI score0.02459EPSS

Exploits0References4

Cvelist•added 2010/07/14 6:31 p.m.•22 views

CVE-2010-1967

Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors...

6.1AI score0.00468EPSS

Exploits0References4

Cvelist•added 2010/07/14 6:31 p.m.•18 views

CVE-2010-1970

Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors...

6.3AI score0.00466EPSS

Exploits0References4

exploitpack•added 2010/06/29 12:0 a.m.•11 views

PHP Bible Search - bible.php?chapter SQL Injection

PHP Bible Search - bible.php?chapter SQL Injection source: https://www.securityfocus.com/bid/41197/info PHP Bible Search is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

8.6AI score

Exploits0

exploitpack•added 2010/06/29 12:0 a.m.•16 views

Grafik CMS - admin.php SQL Injection Cross-Site Scripting

Grafik CMS - admin.php SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/41227/info Grafik CMS is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...

0.4AI score

Exploits0

exploitpack•added 2010/06/29 12:0 a.m.•15 views

CANDID - imageview.php?image_id Cross-Site Scripting

CANDID - imageview.php?imageid Cross-Site Scripting source: https://www.securityfocus.com/bid/41216/info CANDID is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

6.8AI score

Exploits0

Exploit DB•added 2010/06/29 12:0 a.m.•31 views

TornadoStore 1.4.3 - SQL Injection / HTML Injection

source: https://www.securityfocus.com/bid/41233/info TornadoStore is prone to an SQL-injection vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application, access or modify dat...

7.4AI score

Exploits0

Exploit DB•added 2010/06/29 12:0 a.m.•20 views

PHP Bible Search - 'bible.php?chapter' SQL Injection

source: https://www.securityfocus.com/bid/41197/info PHP Bible Search is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

7.4AI score

Exploits0

Exploit DB•added 2010/06/29 12:0 a.m.•15 views

PHP Bible Search - 'bible.php?chapter' Cross-Site Scripting

7.4AI score

Exploits0

Exploit DB•added 2010/06/28 12:0 a.m.•14 views

MySpace Clone 2010 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/41199/info MySpace Clone 2010 is prone to an SQL-injection and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

7.4AI score

Exploits0

Exploit DB•added 2010/06/28 12:0 a.m.•24 views

Clix'N'Cash Clone 2010 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/41202/info Clix'N'Cash Clone 2010 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access ...

7.4AI score

Exploits0

Packet Storm•added 2010/06/23 12:0 a.m.•31 views

synType CMS Cross Site Scripting

Vulnerability ID: HTB22417 Reference: http://www.htbridge.ch/advisory/storedxssvulnerabilityinsyntypecmscommenttextfield.html Product: synType CMS Vendor: MindArray GbR Vulnerable Version: V.0.12.2 and Probably Prior Versions Vendor Notification: 03 June 2010 Vulnerability Type: Stored XSS Cross...

7AI score

Exploits0

Exploit DB•added 2010/06/23 12:0 a.m.•18 views

PreProject Multi-Vendor Shopping Malls - 'products.php' SQL Injection

source: https://www.securityfocus.com/bid/41074/info Pre Multi-Vendor Shopping Malls is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application...

7.4AI score

Exploits0

exploitpack•added 2010/06/15 12:0 a.m.•10 views

Sell@Site PHP Online Jobs Login - Multiple SQL Injections

Sell@Site PHP Online Jobs Login - Multiple SQL Injections source: https://www.securityfocus.com/bid/40869/info Sell@Site PHP Online Jobs is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting thes...

Exploits0

Check Point Advisories•added 2010/06/10 12:0 a.m.•3 views

Oracle Database Server DBMS_CDC_PUBLISH Multiple Procedure SQL Injection (CVE-2010-0870)

Oracle Database Server is an enterprise-level relational database application suite. A SQL injection vulnerability has been reported in Oracle Database Server. The vulnerability is due to input validation errors in the certain procedures of the DBMSCDCPUBLISH package. A remote attacker may exploi...

3.6CVSS7.3AI score0.12032EPSS

Exploits2

exploitpack•added 2010/06/06 12:0 a.m.•13 views

CuteSITE CMS 1.x - manageadd_user.php?user_id SQL Injection

CuteSITE CMS 1.x - manageadduser.php?userid SQL Injection source: https://www.securityfocus.com/bid/40612/info CuteSITE CMS is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these...

Exploits0

exploitpack•added 2010/06/06 12:0 a.m.•14 views

CuteSITE CMS 1.x - managemain.php?fld_path Cross-Site Scripting

CuteSITE CMS 1.x - managemain.php?fldpath Cross-Site Scripting source: https://www.securityfocus.com/bid/40612/info CuteSITE CMS is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these...

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by