CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

securityvulns•added 2011/04/04 12:0 a.m.•37 views

Уязвимости в MyBB

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting и SQL DB Structure Extraction уязвимостях в MyBB. Уязвимости имеют место в скриптах search.php и private.php. XSS WASC-08: http://websecurity.com.ua/uploads/2011/MyBB20XSS.html...

Exploits0

securityvulns•added 2011/03/29 12:0 a.m.•30 views

XSS, SQL Injection и SQL DB Structure Extraction уязвимости в Cetera eCommerce

Здравствуйте 3APA3A! Сообщаю вам о найденных мною новых Cross-Site Scripting, SQL Injection и SQL DB Structure Extraction уязвимостях в Cetera eCommerce. XSS WASC-08 также работают в версии 15.0: http://site/catalog/3Cscript3Ealertdocument.cookie3C/script3E/...

Exploits0

Packet Storm•added 2011/01/28 12:0 a.m.•28 views

Adobe ColdFusion Cross Site Scripting / Disclosure

Hello list! I want to warn you about SQL DB Structure Extraction, Full path disclosure and Cross-Site Scripting vulnerabilities in Adobe ColdFusion. The vulnerabilities exist at detailed error report page. At 16.11.2010 I privately informed Adobe about it, but they ignored my letter...

7.4AI score

Exploits0

Packet Storm•added 2011/01/11 12:0 a.m.•21 views

W-Agora 4.2.1 Cross Site Scripting / Denial Of Service / SQL Injection

Hello Packet Storm! I want to warn you about Cross-Site Scripting, SQL DB Structure Extraction, SQL Injection and Denial of Service vulnerabilities in W-Agora. SecurityVulns ID: 11324. ------------------------- Affected products: ------------------------- Vulnerable are W-Agora 4.2.1 and previous...

0.6AI score

Exploits0

securityvulns•added 2010/12/28 12:0 a.m.•34 views

Многочисленные уязвимости в W-Agora

Здравствуйте 3APA3A! Сообщаю вам о найденных мною многочисленных Cross-Site Scripting, SQL DB Structure Extraction, SQL Injection и Denial of Service уязвимостях в W-Agora. XSS WASC-08:...

Exploits0

securityvulns•added 2010/12/12 12:0 a.m.•41 views

Новые уязвимости в Cetera eCommerce

Здравствуйте 3APA3A! Сообщаю вам о найденных мною новых Cross-Site Scripting и SQL DB Structure Extraction уязвимостях в Cetera eCommerce. XSS WASC-08: http://site/cms/templates/banner.php?bannerId=3Cscript3Ealertdocument.cookie3C/script3E SQL DB Structure Extraction WASC-13:...

0.5AI score

Exploits0

Packet Storm•added 2010/07/28 12:0 a.m.•39 views

Cetera eCommerce 14.0 Cross Site Scripting / SQL Injection

============================================================= I want to warn you about security vulnerabilities in Cetera eCommerce. Which I disclosed already in December 2009 SecurityVulns ID: 10489. ----------------------------- Advisory: Vulnerabilities in Cetera eCommerce...

0.5AI score

Exploits0

Packet Storm•added 2010/03/11 12:0 a.m.•19 views

Abton CMS SQL Injection

Hello Full-Disclosure! I want to warn you about vulnerabilities in Abton. It's commercial Ukrainian CMS. ----------------------------- Advisory: Vulnerabilities in Abton ----------------------------- URL: http://websecurity.com.ua/2886/ ----------------------------- Timeline: 31.03.2008 - found t...

0.2AI score

Exploits0

securityvulns•added 2006/12/20 12:0 a.m.•38 views

Vulnerabilities в W-Agora

Здравствуйте 3APA3A! Сообщаю вам о найденных мною 22.11.2006 уязвимостях в W-Agora 4.1.5 = 4.1.5. Это Cross-Site Scripting, SQL DB Structure Extraction та Full path disclosure уязвимости. Уязвимости в скрипте search.php3. XSS:...

7.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by