Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

wpexploit
wpexploitadded 2023/01/17 12:0 a.m.606 views

WP FullCalendar < 1.5 - Unauthenticated Arbitrary Post Access

The plugin does not ensure that the post retrieved via an AJAX action is public and can be accessed by the user making the request, allowing unauthenticated attackers to get the content of arbitrary posts, including draft/private as well as password-protected ones. Open the below URL as an...

5.3CVSS1.7AI score0.00659EPSS
Exploits2
0day.today
0day.todayadded 2018/05/14 12:0 a.m.26 views

XATABoost 1.0.0 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: XATABoost CMS Sql Injection Google Dork: inurl:php?id= Powered by XATABOOST Exploit Author: MgThuraMoeMyint Vendor Homepage: http://www2.xataboost.com Version: 1.0.0 Tested on: Kali Linux SQL Injection Type: Union Based Example...

Exploits0
exploitpack
exploitpackadded 2012/05/17 12:0 a.m.11 views

PHP Address Book 7.0 - Multiple Cross-Site Scripting Vulnerabilities

PHP Address Book 7.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/53598/info PHP Address Book is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2011/06/23 12:0 a.m.25 views

Nodesforum - &#039;_nodesforum_node&#039; SQL Injection

source: https://www.securityfocus.com/bid/48451/info Nodesforum is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or...

7.4AI score
Exploits0
0day.today
0day.todayadded 2010/05/19 12:0 a.m.27 views

Joomla Component com_extcalendar XSS Vulnerability

Exploit for php platform in category web applications ================================================== Joomla Component comextcalendar XSS Vulnerability ================================================== x Joomla Component Extcalendar x Author: s4r4d0 x Contact: email protected x Team; Fatal...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2008/10/07 12:0 a.m.20 views

TorrentTrader Classic 1.04 - Blind SQL Injection

TorrentTrader Classic 1.04 - Blind SQL Injection ====================================================== == TorrentTrader Classic NamE : TorrentTrader Classic == version : 1.04 == Download : www.torrenttrader.org ====================================================== == AuThOr : BazOka-HaCkEr ==...

0.5AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/21 12:0 a.m.34 views

Ol BookMarks Manager 0.7.4 - SQL Injection

========================================================================== Ol Bookmarks Manager 0.7.4 root Remote SQL Injection Vulnerabilities ========================================================================== Found by: Cyber-Security...

7.4AI score
Exploits0
Rows per page
Query Builder