CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8980 matches found

securityvulns•added 2006/02/26 12:0 a.m.•34 views

[waraxe-2006-SA#047] - Evading sql-injection filters in phpNuke 7.8

================================================================================ waraxe-2006-SA047 ================================================================================ Evading sql-injection filters in phpNuke 7.8...

0.1AI score

Exploits0

exploitpack•added 2006/02/25 12:0 a.m.•13 views

D3Jeeb Pro 3 - fastlinks.php?catid SQL Injection

D3Jeeb Pro 3 - fastlinks.php?catid SQL Injection source: https://www.securityfocus.com/bid/16853/info D3Jeeb is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successfu...

0.4AI score

Exploits0

Exploit DB•added 2006/02/25 12:0 a.m.•58 views

D3Jeeb Pro 3 - 'fastlinks.php?catid' SQL Injection

source: https://www.securityfocus.com/bid/16853/info D3Jeeb is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to...

7.4AI score

Exploits0

Exploit DB•added 2006/02/25 12:0 a.m.•25 views

PHP-Nuke 7.8 - 'Mainfile.php' SQL Injection

source: https://www.securityfocus.com/bid/16831/info PHP-Nuke is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to compromise the...

7.4AI score

Exploits0

securityvulns•added 2006/02/22 12:0 a.m.•38 views

PunBB 1.2.10 Multiple DoS Vulnerabilities

/ --------------------------------------------------------------- Neo Security Team NST® PunBB 1.2.10 Multiple DoS Vulnerabilities --------------------------------------------------------------- Program : PunBB 1.2.10 Homepage: http://www.punbb.org Vulnerable Versions: PunBB 1.2.10 & lower ones...

0.1AI score

Exploits0

exploitpack•added 2006/02/21 12:0 a.m.•12 views

PostNuke 0.6x0.7x NS-Languages Module - language Cross-Site Scripting

PostNuke 0.6x0.7x NS-Languages Module - language Cross-Site Scripting source: https://www.securityfocus.com/bid/16752/info PostNuke is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful...

6.8AI score

Exploits0

securityvulns•added 2006/02/20 12:0 a.m.•26 views

ADOdb Library Cross Site Scripting

GulfTech Security Research February 18, 2006 Vendor : John Lim URL : http://adodb.sourceforge.net/ Version : ADOdb = 4.71 Risk : Cross Site Scripting Description: ADOdb is a database abstraction library for php used by a great deal of projects to provide support for a number of well known databas...

7.2AI score

Exploits0

securityvulns•added 2006/02/20 12:0 a.m.•65 views

SLQ Injection vulnerability in WPCeasy

My first vulnerability report : Description: "WPC.easy" is a database generated website with a dynamic on-line administration suite which allows for product updates, editing, deleting, image upload and price changes. "WPC.easy" is powered by a Secure Database. vendor:...

0.1AI score

Exploits0

Exploit DB•added 2006/02/19 12:0 a.m.•36 views

MiniNuke 1.8.2b - 'pages.asp' SQL Injection

!/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Orginal advisory: http://www.nukedx.com/?viewdoc=9 Usage: mini.pl use IO::Socket; if@ARGV != 3 print " ++ +Welcome to MiniNuke CMS System all versions pages.asp SQL-inject...

7.4AI score

Exploits0

exploitpack•added 2006/02/18 12:0 a.m.•10 views

Webpagecity WPC easy - SQL Injection

Webpagecity WPC easy - SQL Injection source: https://www.securityfocus.com/bid/16721/info Webpagecity 'WPC.easy' is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

0.3AI score

Exploits0

Exploit DB•added 2006/02/18 12:0 a.m.•19 views

Webpagecity WPC easy - SQL Injection

source: https://www.securityfocus.com/bid/16721/info Webpagecity 'WPC.easy' is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to...

7.4AI score

Exploits0

Slackware Linux•added 2006/02/15 12:27 a.m.•57 views

[slackware-security] kdegraphics

New kdegraphics packages are available for Slackware 10.0, 10.1, 10.2, and -current to fix security issues with kpdf. More details about these issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2005-3191 https://vulners.com/cve/CVE-2005-3192...

10CVSS9AI score0.0614EPSS

Exploits5

exploitpack•added 2006/02/14 12:0 a.m.•9 views

RunCMS 1.21.3 - PMLite.php SQL Injection

RunCMS 1.21.3 - PMLite.php SQL Injection source: https://www.securityfocus.com/bid/16652/info RunCMS is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation coul...

Exploits0

Exploit DB•added 2006/02/14 12:0 a.m.•25 views

sNews - Comment Body Cross-Site Scripting

source: https://www.securityfocus.com/bid/16647/info sNews is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could allow an attacker to compromise t...

7.4AI score

Exploits0

Check Point Advisories•added 2006/02/12 12:0 a.m.•6 views

Oracle Database Server XML Database Buffer Overflow (CVE-2003-0727)

...

2.1CVSS3.2AI score0.68548EPSS

Exploits26

NVD•added 2006/02/04 11:2 a.m.•23 views

CVE-2006-0552

Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln DB11...

7.5CVSS6.3AI score0.04835EPSS

Exploits0References10

Prion•added 2006/02/04 11:2 a.m.•23 views

Design/Logic Flaw

7.5CVSS6.5AI score0.04835EPSS

Exploits0References10Affected Software12

Cvelist•added 2006/02/04 11:0 a.m.•20 views

CVE-2006-0552

9.2AI score0.04835EPSS

Exploits0References10

CVE•added 2006/02/04 11:0 a.m.•71 views

CVE-2006-0552

Technical details about CVE-2006-0552 (affected Oracle Net Listener, impact, exploitability, and fix) are not publicly provided in the supplied documents; monitor for official advisories for concrete information.

7.5CVSS9.2AI score0.04835EPSS

Exploits0References10Affected Software12

NVD•added 2006/02/04 2:2 a.m.•29 views

CVE-2006-0547

Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privileged database accounts, via a modified AUTHALTERSESSION attribute in the authentication phase of t...

7.5CVSS7.1AI score0.0965EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by