Lucene search
+L

4938 matches found

exploitpack
exploitpack
added 2005/05/30 12:0 a.m.11 views

Qualiteam X-Cart 4.0.8 - help.php?section Cross-Site Scripting

Qualiteam X-Cart 4.0.8 - help.php?section Cross-Site Scripting source: https://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2005/05/30 12:0 a.m.24 views

ServersCheck 5.95.10 - Directory Traversal

ServersCheck 5.95.10 - Directory Traversal source: https://www.securityfocus.com/bid/13810/info ServersCheck is affected by a directory traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/30 12:0 a.m.28 views

Gedit 2.x - Filename Format String

source: https://www.securityfocus.com/bid/13699/info gEdit is prone to a format-string vulnerability. Exploitation may occur when the program is invoked with a filename that includes malicious format specifiers. Attackers could exploit this issue to corrupt arbitrary regions of memory with...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/27 12:0 a.m.35 views

BEA WebLogic 7.0/8.1 - Administration Console Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/13794/info BEA WebLogic Server And WebLogic Express are affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the error page. A successful attack may facilitate the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/26 12:0 a.m.22 views

BookReview 1.0 - 'search.htm?submit string' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13783/info BookReview is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/05/24 12:0 a.m.318 views

Fusionphp Fusion News 3.33.6 - X-Forworded-For PHP Script Code Injection

Fusionphp Fusion News 3.33.6 - X-Forworded-For PHP Script Code Injection source: https://www.securityfocus.com/bid/13661/info FusionPHP Fusion News is prone to a remote PHP code injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. Th...

Exploits0
Exploit DB
Exploit DB
added 2005/05/24 12:0 a.m.17 views

Spread The Word - Multiple SQL Injections

source: https://www.securityfocus.com/bid/13737/info Spread The Word is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromi...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/05/17 12:0 a.m.86 views

Fusion News v3.6.1 - remote shell exploit

? $copyr = " !!! PRIVATE !!! PRIVATE !!! PRIVATE !!! PRIVATE !!! PRIVATE !!! oooo...oooo.oooooooo8.ooooooooooo .8888o..88.888........88..888..88 .88.888o88..888oooooo.....888 .88...8888.........888....888 o88o....88.o88oooo888....o888o Network security team nst.void.ru Title: Fusion News v3.6.1...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2005/05/16 12:0 a.m.14 views

PostNuke 0.750.76 Blocks Module - Directory Traversal

PostNuke 0.750.76 Blocks Module - Directory Traversal source: https://www.securityfocus.com/bid/13636/info PostNuke Blocks module is affected by a directory traversal vulnerability. The problem presents itself when an attacker passes a name for a target file, along with directory traversal...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/05/04 12:0 a.m.16 views

Apple Mac OSX 10.x - BlueTooth Directory Traversal

Apple Mac OSX 10.x - BlueTooth Directory Traversal source: https://www.securityfocus.com/bid/13491/info Apple Mac OS X is prone to a directory-traversal vulnerability. Since the software fails to sufficiently sanitize input, a remote attacker could use the Bluetooth file- and object-exchange...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/04 12:0 a.m.28 views

Apple Mac OSX 10.x - BlueTooth Directory Traversal

source: https://www.securityfocus.com/bid/13491/info Apple Mac OS X is prone to a directory-traversal vulnerability. Since the software fails to sufficiently sanitize input, a remote attacker could use the Bluetooth file- and object-exchange services to access files outside the default...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/04 12:0 a.m.21 views

ASP Inline Corporate Calendar 3.6.3 - 'Defer.asp' SQL Injection

source: https://www.securityfocus.com/bid/13485/info ASP Inline Corporate Calendar is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a...

7AI score
Exploits0
NVD
NVD
added 2005/05/02 4:0 a.m.16 views

CVE-2005-0584

Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks...

2.6CVSS6.3AI score0.01024EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.27 views

CVE-2005-0584

Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks...

2.6CVSS5.9AI score0.01024EPSS
Exploits0References2
exploitpack
exploitpack
added 2005/05/02 12:0 a.m.8 views

CodetoSell ViArt Shop Enterprise 2.1.6 - product_details.php?category_id Cross-Site Scripting

CodetoSell ViArt Shop Enterprise 2.1.6 - productdetails.php?categoryid Cross-Site Scripting source: https://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application to...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/02 12:0 a.m.222 views

CodetoSell ViArt Shop Enterprise 2.1.6 - 'basket.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/02 12:0 a.m.34 views

CodetoSell ViArt Shop Enterprise 2.1.6 - 'reviews.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/02 12:0 a.m.36 views

Maxwebportal 1.3 - 'custom_link.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/13466/info MaxWebPortal is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2005/04/27 12:0 a.m.28 views

Dream4 Koobi CMS 4.2.3 - 'index.php?P' SQL Injection

source: https://www.securityfocus.com/bid/13412/info Koobi CMS is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/04/23 12:0 a.m.58 views

CartWIZ 1.10 - 'AddToCart.asp' SQL Injection

source: https://www.securityfocus.com/bid/13330/info CartWIZ is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to utilizing the data in an SQL query. Successful exploitation could result in a compromise of...

7AI score
Exploits0
Rows per page
Query Builder