CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-5275

Malware in sbrugna...

6.5CVSS6.4AI score0.00482EPSS

Exploits2References7

NVD•added 2017/11/17 5:29 a.m.•13 views

CVE-2017-1000160

EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site scripting resulting in PHP code injection...

5.4CVSS5.6AI score0.00287EPSS

Exploits0References1

Prion•added 2017/11/17 5:29 a.m.•14 views

Cross site scripting

EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site scripting resulting in PHP code injection...

3.5CVSS5.6AI score0.00287EPSS

Exploits0References1Affected Software1

Cvelist•added 2017/11/17 5:0 a.m.•15 views

CVE-2017-1000160

EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site scripting resulting in PHP code injection...

5.6AI score0.00287EPSS

Exploits0References1

CNVD•added 2017/06/26 12:0 a.m.•2 views

EllisLab ExpressionEngine Weak Password Vulnerability

EllisLab ExpressionEngine is the United States EllisLab company's set of content management system CMS, it provides Web publishing, template engine and attachment components and other modules. A security vulnerability exists in EllisLab ExpressionEngine version 2.x prior to 2.11.8 and version 3.x...

7.5CVSS7.3AI score0.00702EPSS

Exploits0References1

NVD•added 2014/11/04 3:55 p.m.•10 views

CVE-2014-5387

Multiple SQL injection vulnerabilities in EllisLab ExpressionEngine before 2.9.1 allow remote authenticated users to execute arbitrary SQL commands via the 1 columnfilter or 2 category parameter to system/index.php or the 3 tblsort0 parameter in the comment module to system/index.php...

6.5CVSS8.1AI score0.00482EPSS

Exploits2References5

Prion•added 2014/11/04 3:55 p.m.•12 views

Sql injection

6.5CVSS8.8AI score0.00482EPSS

Exploits2References5Affected Software1

CVE•added 2014/11/04 3:0 p.m.•44 views

CVE-2014-5387

EllisLab ExpressionEngine Core is affected by multiple SQL injection vulnerabilities in versions prior to 2.9.1. An authenticated attacker can abuse vulnerable parameters (column_filter, category[] in system/index.php; tbl_sort[0][] in the comment module’s system/index.php) to execute arbitrary S...

6.5CVSS8.3AI score0.00482EPSS

Exploits2References5Affected Software2

Packet Storm•added 2011/11/30 12:0 a.m.•39 views

ExpressionEngine 2.2.2 / CodeIgniter 2.0.3 Cross Site Scripting

CVE: CVE-2011-4025 Vendor: EllisLab Products: ExpressionEngine 2.2.2, CodeIgniter 2.0.3 Vulnerabilities: xssclean filter bypass, leading to Cross-Site Scripting XSS Risk: High Attack Vector: From Remote Reference: http://secureappdev.blogspot.com/2011/11/ellislab-xssclean-filter-bypass.html 1...

0.5AI score

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by