CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/11/20 3:2 a.m.•3 views

EUVD-2025-198250

A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument fname causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

5.1CVSS5.4AI score0.00027EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2007-4075

Malware in sbrugna...

6.8CVSS8.9AI score0.10363EPSS

Exploits0References27

Vulnrichment•added 2025/08/28 12:0 a.m.•2 views

CVE-2025-51971

A reflected Cross-Site Scripting XSS vulnerability exists in register.php of PuneethReddyHC Online Shopping System Advanced 1.0. Unsanitized user input in the fname parameter is reflected in the server response without proper HTML encoding or output escaping. This allows remote attackers to injec...

5.8AI score0.00067EPSS

Exploits1References1

CNNVD•added 2024/11/03 12:0 a.m.•2 views

Code-Projects E-Health Care System SQL注入漏洞

Code-Projects E-Health Care System is a Code-Projects open source e-health care system. A SQL injection vulnerability exists in Code-Projects E-Health Care System version 1.0, which stems from the parameter fname in the file /Users/registration.php that can lead to SQL injection...

9.8CVSS7.9AI score0.00194EPSS

Exploits1References5

OSV•added 2024/08/22 9:15 p.m.•1 views

CVE-2024-8080

A vulnerability classified as critical has been found in SourceCodester Online Health Care System 1.0. Affected is an unknown function of the file search.php. The manipulation of the argument fname with the input 1%' or 1=1 UNION SELECT...

9.8CVSS6.5AI score0.00106EPSS

Exploits1References5

CNNVD•added 2024/08/22 12:0 a.m.•1 views

SourceCodester Online Health Care System SQL注入漏洞

SourceCodester Online Health Care System is a Php-based website builder for online health checkups from SourceCodester, Inc. A SQL injection vulnerability exists in SourceCodester Online Health Care System version 1.0, which is caused by a SQL injection vulnerability in the fname parameter of the...

9.8CVSS7AI score0.00106EPSS

Exploits1References6

F5 Networks•added 2023/02/21 6:50 p.m.•31 views

K15548: Rsync sender.c vulnerability CVE-2007-4091

Security Advisory Description Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function. CVE-2007-4091 Impact There is no impact; F5 products are not affected b...

6.8CVSS9.3AI score0.10363EPSS

Exploits0

SUSE CVE•added 2023/02/15 6:11 a.m.•2 views

SUSE CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

6.8CVSS8.1AI score0.10363EPSS

Exploits0References5

Tenable Nessus•added 2014/10/10 12:0 a.m.•25 views

F5 Networks BIG-IP : Rsync sender.c vulnerability (SOL15548)

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracte...

6.8CVSS8.7AI score0.10363EPSS

Exploits0References2

Gentoo Linux•added 2007/09/20 12:0 a.m.•21 views

rsync: Two buffer overflows

Background rsync is a file transfer program to keep remote directories synchronized. Description Sebastian Krahmer from the SUSE Security Team discovered two off-by-one errors in the function "fname" in file sender.c when processing overly long directory names. Impact A remote attacker could enti...

6.8CVSS7AI score0.10363EPSS

Exploits0

OSV•added 2007/08/16 12:17 a.m.•1 views

DEBIAN-CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

6.8CVSS9.3AI score0.10363EPSS

Exploits0References1

UbuntuCve•added 2007/08/16 12:17 a.m.•32 views

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

6.8CVSS7.6AI score0.10363EPSS

Exploits0References2

NVD•added 2007/08/16 12:17 a.m.•14 views

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

6.8CVSS7.4AI score0.10363EPSS

Exploits0References24

Prion•added 2007/08/16 12:17 a.m.•17 views

Code injection

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

6.8CVSS7.6AI score0.10363EPSS

Exploits0References24Affected Software1

Debian CVE•added 2007/08/16 12:0 a.m.•19 views

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

6.8CVSS7.4AI score0.10363EPSS

Exploits0

Cvelist•added 2007/08/16 12:0 a.m.•35 views

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...

7.3AI score0.10363EPSS

Exploits0References24

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by