CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-30605

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00223EPSS

Exploits1References1

CNVD•added 2021/12/01 12:0 a.m.•14 views

PhpWhois Cross-Site Scripting Vulnerability

PhpWhois is a Whois library containing Php by Spanish individual developer David Saez Padros. A cross-site scripting vulnerability exists in PhpWhois, which originates in the file example.php, where the exit function will terminate the script and print a message to the user. No detailed...

6.1CVSS1.1AI score0.00223EPSS

Exploits1References1

Prion•added 2021/11/29 12:15 p.m.•15 views

Cross site scripting

phpWhois last update Jun 30 2021 is affected by a Cross Site Scripting XSS vulnerability. In file example.php, the exit function will terminate the script and print the message to the user. The message will contain $GET'query' then there is a XSS vulnerability...

4.3CVSS5.8AI score0.00223EPSS

Exploits1References1

CVE•added 2021/11/29 11:33 a.m.•34 views

CVE-2021-43698

The CVE-2021-43698 entry concerns phpWhois (a PHP Whois library). The vulnerability is a Cross-Site Scripting (XSS) flaw in the example.php file, where the exit() path prints a user-visible message that includes $_GET['query'], enabling injection. Affected component/function: example.php within p...

6.1CVSS5.8AI score0.00223EPSS

Exploits1References1Affected Software1

Openbugbounty•added 2016/12/30 2:52 p.m.•14 views

ldwarf.ipac.caltech.edu XSS vulnerability

Vulnerable URL: http://ldwarf.ipac.caltech.edu/jpgraph-2.2/src/Examples/show-example.php?target=dateaxisex4.phpKNOXSS Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

6.3AI score

Exploits0

Cvelist•added 2010/11/03 7:0 p.m.•21 views

CVE-2010-4155

Multiple cross-site scripting XSS vulnerabilities in eXV2 CMS 2.10 allow remote attackers to inject arbitrary web script or HTML via the 1 rssfeedURL parameter to manual/caferss/example.php and the sumb parameter to 2 modules/news/archive.php, 3 modules/news/topics.php, and 4...

5.5AI score0.00374EPSS

Exploits2References4

Exploit DB•added 2008/05/04 12:0 a.m.•25 views

ScorpNews 1.0 - 'site' Remote File Inclusion

/news/example.php example Exploit ; http://www.example.com/example.php?site=http://shell http://www.example.com/news/example.php?site=http://shell Greetz to; .:National Security Team:. www.crystal-war.6x.to milw0rm.com 2008-05-04...

7.4AI score

Exploits0

Prion•added 2007/10/30 9:46 p.m.•9 views

Sql injection

SQL injection vulnerability in example.php in SAXON 5.4 allows remote attackers to execute arbitrary SQL commands via the template parameter...

6.8CVSS9AI score0.00529EPSS

Exploits2References7Affected Software1

Cvelist•added 2007/10/30 9:0 p.m.•15 views

CVE-2007-4863

SQL injection vulnerability in example.php in SAXON 5.4 allows remote attackers to execute arbitrary SQL commands via the template parameter...

8.3AI score0.00529EPSS

Exploits2References7

CVE•added 2007/10/30 9:0 p.m.•41 views

CVE-2007-4863

The CVE-2007-4863 entry concerns SAXON version 5.4, where a SQL injection vulnerability exists in example.php via the template parameter. The vulnerability arises when PHP magic_quotes_gpc is Off, allowing remote attackers to execute arbitrary SQL commands, potentially exposing data or altering i...

6.8CVSS8.3AI score0.00529EPSS

Exploits2References7Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by