CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/01/07 9:15 a.m.•4 views

CVE-2024-2306

The Revslider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via svg upload in all versions up to, and including, 6.6.20 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to inject arbitrary web scripts in pages that...

6.4CVSS5.8AI score0.00148EPSS

Exploits0References1

Exploit DB•added 2025/04/19 12:0 a.m.•356 views

FoxCMS 1.2.5 - Remote Code Execution (RCE)

Date: 2025-04-17 Exploit Title: Exploit Author: VeryLazyTech Vendor Homepage: https://www.foxcms.org/ Software Link: https://www.foxcms.cn/ Version: FoxCMS v.1.2.5 Tested on: Ubuntu 22.04, Windows Server 2019 CVE: CVE-2025-29306 Website: https://www.verylazytech.com !/bin/bash banner cat " exit 1...

9.8CVSS7AI score0.86208EPSS

Exploits11

seebug.org•added 2014/07/01 12:0 a.m.•21 views

Duhok Forum 1.0 script Cross Site Scripting Vulnerability

0day.today•added 2010/10/11 12:0 a.m.•24 views

Allpc 2.5 osCommerce by Pass Creat and Download Backup

Exploit for php platform in category web applications ====================================================== Allpc 2.5 osCommerce by Pass Creat and Download Backup ====================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1...

Exploit DB•added 2010/09/27 12:0 a.m.•37 views

Barracuda Networks Spam & Virus Firewall 4.1.1.021 - Remote Configuration Retrieval

!/bin/bash Exploit by ShadowHatesYou [email protected] The resulting output is an SQL dump containing the Barracuda's configuration, which includes goodies such as: The administrative password for the BSFsystempassword MTA LDAP passwordsmtaldapadvancedpassword Password for each configured...

Packet Storm•added 2010/08/03 12:0 a.m.•32 views

Digistore Ecommerce 4.0 File Disclosure / Backup Disclosure

==================================================== Digistore Ecommerce V4.0 File Disclosure Vulnerabilities Digistore Ecommerce V4.0 by Pass / Creat and Download Backup Vulnerability ====================================================...

0day.today•added 2010/07/29 12:0 a.m.•31 views

osCSS 1.2.1 Changer Login and Pass CSRF Vulnerability

Exploit for php platform in category web applications ===================================================== osCSS 1.2.1 Changer Login and Pass CSRF Vulnerability ===================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /'...

0day.today•added 2010/07/20 12:0 a.m.•19 views

ezAPPAREL by Pass / Creat and Download Backup Vulnerability

Exploit for php platform in category web applications =========================================================== ezAPPAREL by Pass / Creat and Download Backup Vulnerability ===========================================================...

Exploit DB•added 2010/05/11 12:0 a.m.•44 views

Digital College 1.0 - Arbitrary File Upload

======================================================================================== | Title : Digital College 1.0 upload Vulnerability | Author : indoushka | email : [email protected] | Dork : Powered by Digital College 1.0 - Magtrb Soft 2010 | Tested on: windows SP2 Français V.Pnx2 2.0 ...

Packet Storm•added 2010/04/29 12:0 a.m.•9700 views

deV!L'z Clanportal 1.5 Remote File Inclusion

======================================================================================== | Title : deV!Lz Clanportal V1.5 Mullti Vulnerability | Author : indoushka | email : [email protected] | Home : www.iqs3cur1ty.com/vb | Script : CMS © 2005 - 2010 by deV!Lz Clanportal - supported by...

Exploit DB•added 2010/04/29 12:0 a.m.•11215 views

DZCP (deV!L`z Clanportal) 1.5.3 - Multiple Vulnerabilities

0day.today•added 2010/03/20 12:0 a.m.•15 views

Wazzum Dating Software remote shell upload Vulnerability

Exploit for unknown platform in category web applications ======================================================== Wazzum Dating Software remote shell upload Vulnerability ========================================================...

Exploit DB•added 2010/03/15 12:0 a.m.•36 views

FreeHost 1.00 - Arbitrary File Upload

Packet Storm•added 2010/02/25 12:0 a.m.•25 views

PBBoard 2.0.5 Add Administrator / Shell Upload

0.2AI score

Packet Storm•added 2010/01/04 12:0 a.m.•27 views

Evo-Dev Cross Site Scripting

0day.today•added 2009/12/29 12:0 a.m.•23 views

Futility Forum 1.0 Revamp DB Download Vulnerability

Exploit for unknown platform in category web applications =================================================== Futility Forum 1.0 Revamp DB Download Vulnerability ===================================================...

0day.today•added 2009/12/29 12:0 a.m.•18 views

makit news/blog poster v3.1 DB Download Vulnerability

Exploit for unknown platform in category web applications ===================================================== makit news/blog poster v3.1 DB Download Vulnerability =====================================================...

Packet Storm•added 2007/07/07 12:0 a.m.•27 views

pnphpbb2view-sql.txt

/ i PNphpBB2 "viewforum.php" SQL Injection Blind Password Hash Fishing Exploit i Vulnerable versions: PNphpBB2 You need at least 2 posts in the forum. - Thanks to waraxe for exploit structure... I have saved much time : Tested - Postnuke 0.764 with PNphpBB2 1.2i and MySQL 5.0.42 Maybe with other...

Exploit DB•added 2007/07/03 12:0 a.m.•30 views

PNPHPBB2 < 1.2i - 'viewforum.php' SQL Injection

7AI score