CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1002 matches found

OpenVAS•added 2011/03/25 12:0 a.m.•12 views

netjukebox 'skin' Parameter Cross Site Scripting Vulnerability

netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Exploits0References2

exploitpack•added 2011/03/24 12:0 a.m.•12 views

netjukebox 4.01B5.25 - skin Cross-Site Scripting

netjukebox 4.01B5.25 - skin Cross-Site Scripting source: https://www.securityfocus.com/bid/47027/info netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage th...

Exploit DB•added 2011/03/24 12:0 a.m.•17 views

netjukebox 4.01B/5.25 - 'skin' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47027/info netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...

exploitpack•added 2011/03/21 12:0 a.m.•17 views

Newsportal 0.37 - post.php Cross-Site Scripting

Newsportal 0.37 - post.php Cross-Site Scripting source: https://www.securityfocus.com/bid/46961/info NewsPortal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage thi...

Exploit DB•added 2011/03/21 12:0 a.m.•18 views

PluggedOut Blog 1.9.9 - 'year' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46962/info PluggedOut Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in...

exploitpack•added 2011/03/21 12:0 a.m.•13 views

PluggedOut Blog 1.9.9 - year Cross-Site Scripting

PluggedOut Blog 1.9.9 - year Cross-Site Scripting source: https://www.securityfocus.com/bid/46962/info PluggedOut Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may...

Exploit DB•added 2011/03/08 12:0 a.m.•17 views

Ruubikcms 1.0.3 - 'head.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46794/info RuubikCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...

exploitpack•added 2011/03/08 12:0 a.m.•11 views

Ruubikcms 1.0.3 - head.php Cross-Site Scripting

Ruubikcms 1.0.3 - head.php Cross-Site Scripting source: https://www.securityfocus.com/bid/46794/info RuubikCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this...

exploitpack•added 2011/02/08 12:0 a.m.•16 views

WebAsyst Shop-Script - Cross-Site Scripting HTML Injection

WebAsyst Shop-Script - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/46250/info WebAsyst Shop-Script is prone to a cross-site-scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in...

exploitpack•added 2010/12/21 12:0 a.m.•14 views

ImpressCMS 1.2.x - quicksearch_ContentContent HTML Injection

ImpressCMS 1.2.x - quicksearchContentContent HTML Injection source: https://www.securityfocus.com/bid/45541/info ImpressCMS is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content...

Exploit DB•added 2010/12/21 12:0 a.m.•21 views

ImpressCMS 1.2.x - 'quicksearch_ContentContent' HTML Injection

source: https://www.securityfocus.com/bid/45541/info ImpressCMS is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in the context of t...

Packet Storm•added 2010/12/20 12:0 a.m.•31 views

WP-Forum Cross Site Scripting / SQL Injection

Multiple Vulnerabilities in WP Forum WordPress Plugin 1. Advisory Information Title: Multiple Vulnerabilities in WP-Forum Advisory URL: http://www.charleshooper.net/advisories/ Date Published: 12/17/2010 Vendors Contacted: WordPress. Maintainer of plugin is unreachable. 2. Summary WP Forum is a...

Exploit DB•added 2010/12/15 12:0 a.m.•22 views

Blog:CMS 4.2.1 e - Multiple HTML Injections / Cross-Site Scripting

source: https://www.securityfocus.com/bid/45432/info BLOG:CMS is prone to a cross-site-scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...

Check Point Advisories•added 2010/11/08 12:0 a.m.•1 views

Apple Safari WebKit Rendering Counter Code Execution (CVE-2010-1784)

Safari is a web browsing application developed by Apple. Safari browsing functionality is built around the set of components called WebKit. WebKit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP, and others. A...

9.3CVSS9.3AI score0.03505EPSS

OpenVAS•added 2010/11/03 12:0 a.m.•10 views

Webmedia Explorer HTML Injection Vulnerability

Webmedia Explorer is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentiall...

Exploits0References2

exploitpack•added 2010/10/19 12:0 a.m.•16 views

sNews 1.7 - snews.php Cross-Site Scripting HTML Injection

sNews 1.7 - snews.php Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/44255/info sNews is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically...

Exploit DB•added 2010/10/19 12:0 a.m.•24 views

sNews 1.7 - 'snews.php' Cross-Site Scripting / HTML Injection

source: https://www.securityfocus.com/bid/44255/info sNews is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...

Exploit DB•added 2010/10/13 12:0 a.m.•31 views

PluXml 5.0.1 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/44069/info PluXml is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTM...

exploitpack•added 2010/10/13 12:0 a.m.•11 views

Ronny CMS 1.1 r935 - Multiple HTML Injection Vulnerabilities

Ronny CMS 1.1 r935 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/44066/info Ronny CMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful...

exploitpack•added 2010/10/13 12:0 a.m.•23 views

PluXml 5.0.1 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

PluXml 5.0.1 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/44069/info PluXml is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by