Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

328 matches found

exploitpack
exploitpackadded 2007/04/23 12:0 a.m.10 views

Phorum 5.1.20 - admin.php?module[] Full Path Disclosure

Phorum 5.1.20 - admin.php?module Full Path Disclosure source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/04/23 12:0 a.m.22 views

Phorum 5.1.20 - 'admin.php?Groups Module group_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the application fails to sufficiently...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/04/10 12:0 a.m.12 views

DropAFew 0.2 - editlogcal.php?save Action calories SQL Injection

DropAFew 0.2 - editlogcal.php?save Action calories SQL Injection source: https://www.securityfocus.com/bid/23400/info DropAFew is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues...

0.6AI score
Exploits0
Exploit DB
Exploit DBadded 2007/04/09 12:0 a.m.27 views

UBBCentral UBB.Threads 6.1.1 - 'UBBThreads.php' SQL Injection

source: https://www.securityfocus.com/bid/23369/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2007/03/19 12:0 a.m.45 views

PHPX 3.5.15/3.5.16 - 'gallery.php' SQL Injection

source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitra...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/03/19 12:0 a.m.12 views

PHPX 3.5.153.5.16 - users.php SQL Injection

PHPX 3.5.153.5.16 - users.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/26 12:0 a.m.20 views

Tyger Bug Tracking System 1.1.3 - 'register.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2007/02/23 12:0 a.m.23 views

Oracle 10g Database - 'SUBSCRIPTION_NAME' SQL Injection (1)

source: https://www.securityfocus.com/bid/13236/info Oracle database is prone to an SQL-injection vulnerability because the software fails to properly sanitize user-supplied data. The 'SUBSCRIPTIONNAME' parameter is vulnerable. Packages that employ this parameter execute with 'SYS' user privilege...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/01/09 12:0 a.m.56 views

PHPKit 1.6.1 - comment.php SQL Injection

PHPKit 1.6.1 - comment.php SQL Injection source: https://www.securityfocus.com/bid/21962/info PHPKIT is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

Exploits0
exploitpack
exploitpackadded 2007/01/06 12:0 a.m.13 views

Shopstorenow E-Commerce Shopping Cart - Orange.asp SQL Injection

Shopstorenow E-Commerce Shopping Cart - Orange.asp SQL Injection source: https://www.securityfocus.com/bid/21905/info Shopstorenow E-commerce Shopping Cart is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2006/12/23 12:0 a.m.34 views

Future Internet - 'index.cfm' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issues to steal...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2006/12/22 12:0 a.m.17 views

Xt-News 0.1 - show_news.php?id_news SQL Injection

Xt-News 0.1 - shownews.php?idnews SQL Injection source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2006/12/09 12:0 a.m.21 views

AnnonceScriptHP 2.0 - 'erreurinscription.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to ste...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/12/09 12:0 a.m.19 views

AnnonceScriptHP 2.0 - '/admin/admin_config/Aide.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to ste...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/12/09 12:0 a.m.16 views

AnnonceScriptHP 2.0 - '/Templates/commun.dwt.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to ste...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/12/09 12:0 a.m.24 views

AnnonceScriptHP 2.0 - '/admin/admin_membre/fiche_membre.php?idmembre' SQL Injection

source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to ste...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2006/12/09 12:0 a.m.17 views

AnnonceScriptHP 2.0 - '/Templates/admin.dwt.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to ste...

7AI score
Exploits0
exploitpack
exploitpackadded 2006/12/04 12:0 a.m.17 views

UApplication Uguestbook 1.0 - index.asp SQL Injection

UApplication Uguestbook 1.0 - index.asp SQL Injection source: https://www.securityfocus.com/bid/21426/info Uapplication Uguestbook is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

8.7AI score
Exploits0
Exploit DB
Exploit DBadded 2006/11/27 12:0 a.m.19 views

Clickblog - 'Displaycalendar.asp' SQL Injection

source: https://www.securityfocus.com/bid/21310/info Clickblog is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2006/11/27 12:0 a.m.7 views

ClickContact - default.asp Multiple SQL Injections

ClickContact - default.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/21302/info ClickContact is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow...

Exploits0
Rows per page
Query Builder