Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2009-4706

Malware in sbrugna...

7.5CVSS6.4AI score0.00164EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2012-1656

Malware in sbrugna...

4.3CVSS6.4AI score0.00682EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-2486

Malware in sbrugna...

10CVSS6.4AI score0.04826EPSS
Exploits1References6
Github Security Blog
Github Security Blogadded 2024/02/29 3:33 a.m.17 views

livehelperchat Server-Side Template Injection

Server-Side Template Injection SSTI vulnerability in livehelperchat before 4.34, allows remote attackers to execute arbitrary code and obtain sensitive information via the search parameter in lhcweb/modules/lhfaq/faqweight.php...

9.8CVSS7.5AI score0.03183EPSS
Exploits0References4Affected Software1
Openbugbounty
Openbugbountyadded 2016/06/11 5:4 a.m.8 views

submitter.ru XSS vulnerability

Vulnerable URL: http://submitter.ru/modules.php?op=modload=FAQ=index=yescat=1=...

6.9AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.38 views

OTRS FAQ Module - Persistent XSS

No description provided by source. Exploit Title: OTRS Faq Module - Persistent XSS Date: 2-Apr-2013 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.otrs.com Version: OTRS ITSM 3.2.x,OTRS ITSM 3.1.x,OTRS ITSM 3.0.x Tested on: Perl CVE : CVE-2013-2637 OVERVIEW The OTRS ITSM FAQ Module 3.2...

6.9AI score0.01433EPSS
Exploits6
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.19 views

LANAI CMS 1.2.14 FAQ Module mid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/25193/info LANAI CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2013/04/08 12:0 a.m.40 views

OTRS 3.x - FAQ Module Persistent Cross-Site Scripting

OTRS 3.x - FAQ Module Persistent Cross-Site Scripting Exploit Title: OTRS Faq Module - Persistent XSS Date: 2-Apr-2013 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.otrs.com Version: OTRS ITSM 3.2.x,OTRS ITSM 3.1.x,OTRS ITSM 3.0.x Tested on: Perl CVE : CVE-2013-2637 OVERVIEW The OTRS...

4.3CVSS6.3AI score0.01433EPSS
Exploits6
Exploit DB
Exploit DBadded 2013/04/08 12:0 a.m.48 views

OTRS 3.x - FAQ Module Persistent Cross-Site Scripting

Exploit Title: OTRS Faq Module - Persistent XSS Date: 2-Apr-2013 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.otrs.com Version: OTRS ITSM 3.2.x,OTRS ITSM 3.1.x,OTRS ITSM 3.0.x Tested on: Perl CVE : CVE-2013-2637 OVERVIEW The OTRS ITSM FAQ Module 3.2.x and below is vulnerable to a...

6.1CVSS7AI score0.01433EPSS
Exploits6
0day.today
0day.todayadded 2013/04/08 12:0 a.m.51 views

OTRS FAQ Module - Persistent XSS

The OTRS ITSM FAQ Module 3.2.x and below is vulnerable to a persistant XSS that permit some client side attack like cookies grabbing. OTRS http://www.otrs.com is a flexible Help Desk and IT-Service Management Software distribuited as opensource project AGPL License and also as-a-service. WIth a...

0.3AI score0.01433EPSS
Exploits6
Packet Storm
Packet Stormadded 2013/04/07 12:0 a.m.50 views

OTRS FAQ Cross Site Scripting

Exploit Title: OTRS Faq Module - Persistent XSS Date: 2-Apr-2013 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.otrs.com Version: OTRS ITSM 3.2.x,OTRS ITSM 3.1.x,OTRS ITSM 3.0.x Tested on: Perl CVE : CVE-2013-2637 OVERVIEW The OTRS ITSM FAQ Module 3.2.x and below is vulnerable to a...

0.01433EPSS
Exploits6
NVD
NVDadded 2012/09/25 11:55 p.m.8 views

CVE-2012-1646

Multiple cross-site scripting XSS vulnerabilities in the FAQ module 6.x-1.x before 6.x-1.13 and 7.x-1.x-rc1 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via the 1 title parameter in faq.admin.inc or 2 detailedquestion parameter in faq.module...

4.3CVSS5.5AI score0.00682EPSS
Exploits0References10
Prion
Prionadded 2012/09/25 11:55 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the FAQ module 6.x-1.x before 6.x-1.13 and 7.x-1.x-rc1 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via the 1 title parameter in faq.admin.inc or 2 detailedquestion parameter in faq.module...

4.3CVSS5.7AI score0.00682EPSS
Exploits0References10Affected Software1
CVE
CVEadded 2012/09/25 11:0 p.m.45 views

CVE-2012-1646

The CVE-2012-1646 vulnerability affects the Drupal FAQ module (6.x-1.x prior to 6.x-1.13 and 7.x-1.x-rc1). The root cause is lack of input sanitization in the module when displaying user-supplied content, allowing XSS via the title parameter in faq.admin.inc and the detailed_question parameter in...

4.3CVSS5.5AI score0.00682EPSS
Exploits0References10Affected Software1
Cvelist
Cvelistadded 2012/09/25 11:0 p.m.14 views

CVE-2012-1646

Multiple cross-site scripting XSS vulnerabilities in the FAQ module 6.x-1.x before 6.x-1.13 and 7.x-1.x-rc1 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via the 1 title parameter in faq.admin.inc or 2 detailedquestion parameter in faq.module...

5.5AI score0.00682EPSS
Exploits0References10
0day.today
0day.todayadded 2012/03/30 12:0 a.m.21 views

FAQ module for phpFaber CSRF Vulnerability

Exploit for php platform in category web applications Exploit Title: FAQ module for phpFaber CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/faq-module-for-phpfaber-cms/19826/ Category:: webapps Demo : http://demo.phpfaber.com/cms1/cmsadmin Greetz: Inj3ct0r Explo...

7.1AI score
Exploits0
Drupal
Drupaladded 2012/02/22 12:0 a.m.13 views

SA-CONTRIB-2012-023 - FAQ - Cross Site Scripting

CVE: CVE-2012-1646 The Frequently Asked Questions faq module allows users, with the appropriate permissions, to create question and answer pairs which are displayed on the 'faq' page, and in the random and recent FAQ blocks. The module does not sanitize some of the user-supplied data before...

4.3CVSS5.7AI score0.00682EPSS
Exploits0References10
htbridge
htbridgeadded 2010/10/05 12:0 a.m.67 views

SQL Injection Vulnerabilities in 4site CMS

High-Tech Bridge SA Security Research Lab has discovered three vulnerabilities in 4site CMS which could be exploited to execute arbitrary SQL commands in applications database. 1 SQL injection vulnerabilities in 4site CMS: CVE-2010-4152 1.1 The vulnerability exists due to insufficient validation ...

7.5CVSS8.2AI score0.00243EPSS
Exploits1Affected Software1
Prion
Prionadded 2010/03/26 8:30 p.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in Docebo 3.6.0.3 allow remote attackers to execute arbitrary SQL commands via 1 the word parameter in a play help action to the faq module, reachable through index.php; 2 the word parameter in a play keyw action to the link module, reachable through...

7.5CVSS9.3AI score0.00164EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2010/03/26 8:0 p.m.17 views

CVE-2009-4742

Multiple SQL injection vulnerabilities in Docebo 3.6.0.3 allow remote attackers to execute arbitrary SQL commands via 1 the word parameter in a play help action to the faq module, reachable through index.php; 2 the word parameter in a play keyw action to the link module, reachable through...

8.5AI score0.00164EPSS
Exploits1References3
Rows per page
Query Builder