CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-3872

Malware in sbrugna...

4.3CVSS6.4AI score0.00513EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-3876

Malware in sbrugna...

4.3CVSS6.4AI score0.00263EPSS

Exploits0References3

RedhatCVE•added 2025/05/21 7:55 p.m.•10 views

CVE-2009-3901

Multiple cross-site scripting XSS vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other unspecified vectors...

4.3CVSS6AI score0.00513EPSS

Exploits1References1

Prion•added 2009/11/06 3:30 p.m.•16 views

Cross site scripting

4.3CVSS6.1AI score0.00513EPSS

Exploits1References2

Prion•added 2009/11/06 3:30 p.m.•13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to 1 Wizardtracking.asp, 2 wizardoe2.asp, 3 your-register.asp, 4 main-whyregister.asp, and 5 your.asp in home/, and other unspecified vectors...

4.3CVSS5.8AI score0.00263EPSS

Exploits0References1

NVD•added 2009/11/06 3:30 p.m.•15 views

CVE-2009-3901

4.3CVSS5.8AI score0.00513EPSS

Exploits1References2

CVE•added 2009/11/06 3:0 p.m.•47 views

CVE-2009-3905

CVE-2009-3905 concerns XSS in the e-Courier CMS. The vulnerability arises from unsafely handling the UserGUID parameter in multiple pages: Wizard_tracking.asp, wizard_oe2.asp, your-register.asp, main-whyregister.asp, and your.asp in home/, plus unspecified vectors. Public details from NVD/NVD-der...

4.3CVSS5.7AI score0.00263EPSS

Exploits0References1Affected Software1

CVE•added 2009/11/06 3:0 p.m.•44 views

CVE-2009-3901

The CVE-2009-3901 entry documents multiple cross-site scripting (XSS) vulnerabilities in e-Courier CMS. The flaws allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other vectors. CVSS notes a medium base score (4.3) with no confidential...

4.3CVSS5.8AI score0.00513EPSS

Exploits1References2Affected Software1

Cvelist•added 2009/11/06 3:0 p.m.•21 views

CVE-2009-3901

5.8AI score0.00513EPSS

Exploits1References2

Packet Storm•added 2009/11/04 12:0 a.m.•24 views

e-Courier CMS Cross Site Scripting

Vendor: e-Courier http://www.ecouriersoftware.com/ Product: CMS Tracking Site Issue: Cross-Site Scripting. Description: Nearly all pages include the URI Parameter UserGUID, which is not sanitized before being included in the response. Example:...

7.4AI score

Exploits0

exploitpack•added 2009/10/06 12:0 a.m.•11 views

e-Courier CMS - UserGUID Multiple Cross-Site Scripting Vulnerabilities

e-Courier CMS - UserGUID Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/41970/info e-Courier CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

Exploits0

Exploit DB•added 2009/10/06 12:0 a.m.•32 views

e-Courier CMS - 'UserGUID' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/41970/info e-Courier CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by