CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

exploitpack•added 2016/08/14 12:0 a.m.•37 views

Claroline 1.7.7 - Arbitrary File Inclusion

Claroline 1.7.7 - Arbitrary File Inclusion Claroline Arbitrary File Inclusion Vendor: Claroline Product: Claroline Version: 0 $uidReset = true; $clarologinSucceeded = true; break; e...

5.1CVSS0.9AI score0.04324EPSS

Exploit DB•added 2016/08/14 12:0 a.m.•36 views

Claroline < 1.7.7 - Arbitrary File Inclusion

Claroline Arbitrary File Inclusion Vendor: Claroline Product: Claroline Version: 0 $uidReset = true; $clarologinSucceeded = true; break; else...

5.1CVSS6.9AI score0.04324EPSS

exploitpack•added 2016/03/05 12:0 a.m.•31 views

PHPLib 7.4 - SQL Injection

PHPLib 7.4 - SQL Injection PHPLib SQL Injection Vendor: PHPLib Product: PHPLib Version: newid=true; $this-name = $this-cookiename==""?$this-classname:$this-cookiename; if "" == $id $this-newid=false; switch $this-mode case "get": $id = isset$HTTPGETVARS$this-name ?...

7.5CVSS0.3AI score0.09221EPSS

Exploit DB•added 2016/03/05 12:0 a.m.•42 views

PHPLib < 7.4 - SQL Injection

PHPLib SQL Injection Vendor: PHPLib Product: PHPLib Version: newid=true; $this-name = $this-cookiename==""?$this-classname:$this-cookiename; if "" == $id $this-newid=false; switch $this-mode case "get": $id = isset$HTTPGETVARS$this-name ?...

7.5CVSS6.9AI score0.09221EPSS

exploitpack•added 2016/02/26 12:0 a.m.•32 views

phpRPC 0.7 - Remote Code Execution

phpRPC 0.7 - Remote Code Execution phpRPC Remote Code Execution Vendor: Robert Hoffman Product: phpRPC Version: = 0.7 Website: http://sourceforge.net/projects/phprpc/ BID: 16833 CVE: CVE-2006-1032 OSVDB: 23514 SECUNIA: 19028 PACKETSTORM: 44267 Description: phpRPC is meant to be an easy to use...

7.5CVSS7.2AI score0.16267EPSS

Exploits6

Exploit DB•added 2016/02/26 12:0 a.m.•35 views

phpRPC < 0.7 - Remote Code Execution

phpRPC Remote Code Execution Vendor: Robert Hoffman Product: phpRPC Version: = 0.7 Website: http://sourceforge.net/projects/phprpc/ BID: 16833 CVE: CVE-2006-1032 OSVDB: 23514 SECUNIA: 19028 PACKETSTORM: 44267 Description: phpRPC is meant to be an easy to use xmlrpc library. phpRPC is greatly...

7.5CVSS6.5AI score0.16267EPSS

Exploits6

Exploit DB•added 2016/02/21 12:0 a.m.•33 views

PEAR LiveUser < 0.16.8 - Arbitrary File Access

PEAR LiveUser Arbitrary File Access Vendor: Markus Wolff Product: PEAR LiveUser Version: options'cookie''name'; if strlen$cookieData deleteRememberCookie; $this-stack-pushLIVEUSERERRORCOOKIE, 'error', array, 'Wrong data in cookie store in LiveUser::readRememberMeCookie'; return false; $storeid =...

6.4CVSS6.7AI score0.14177EPSS

Exploit DB•added 2016/02/18 12:0 a.m.•47 views

ADOdb < 4.71 - Cross Site Scripting

ADOdb Cross Site Scripting Vendor: John Lim Product: ADOdb Version: currpage = $SESSION$currpage; The above code is taken from adodb-pager.inc.php @ lines 72-77 and ultimately set's the $this-currpage variable to unsanitized user supplied input. Later on this variable is used when drawing the lin...

4.3CVSS6.4AI score0.12629EPSS

exploitpack•added 2016/02/18 12:0 a.m.•34 views

ADOdb 4.71 - Cross Site Scripting

ADOdb 4.71 - Cross Site Scripting ADOdb Cross Site Scripting Vendor: John Lim Product: ADOdb Version: currpage = $SESSION$currpage; The above code is taken from adodb-pager.inc.php @ lines 72-77 and ultimately set's the $this-currpage variable to unsanitized user supplied input. Later on this...

4.3CVSS0.12629EPSS

Exploit DB•added 2015/07/14 12:0 a.m.•39 views

SquirrelMail < 1.4.5-RC1 - Arbitrary Variable Overwrite

SquirrelMail Arbitrary Variable Overwrite Vendor: The SquirrelMail Project Team Product: SquirrelMail Version: = 1.4.5-RC1 Website: http://www.squirrelmail.org/ BID: 14254 CVE: CVE-2005-2095 SECUNIA: 16058 PACKETSTORM: 38709 Description: SquirrelMail is a standards-based webmail package written i...

4.3CVSS9.5AI score0.1115EPSS

exploitpack•added 2015/07/14 12:0 a.m.•30 views

SquirrelMail 1.4.5-RC1 - Arbitrary Variable Overwrite

SquirrelMail 1.4.5-RC1 - Arbitrary Variable Overwrite SquirrelMail Arbitrary Variable Overwrite Vendor: The SquirrelMail Project Team Product: SquirrelMail Version: = 1.4.5-RC1 Website: http://www.squirrelmail.org/ BID: 14254 CVE: CVE-2005-2095 SECUNIA: 16058 PACKETSTORM: 38709 Description:...

4.3CVSS0.9AI score0.1115EPSS

Exploit DB•added 2015/07/02 12:0 a.m.•84 views

PHPXMLRPC < 1.1 - Remote Code Execution

PHPXMLRPC Remote Code Execution Vendor: Useful Information Inc. Product: PHPXMLRPC Version: = 1.1 Website: http://phpxmlrpc.sourceforge.net/ BID: 14088 CVE: CVE-2005-1921 OSVDB: 17793 SECUNIA: 15852 PACKETSTORM: 38394 Description: PHPXMLRPC aka XML-RPC For PHP is a PHP implementation of the XML-R...

7.5CVSS6.5AI score0.86153EPSS

Exploits5

exploitpack•added 2015/07/01 12:0 a.m.•16 views

PEAR XML_RPC 1.3.0 - Remote Code Execution

PEAR XMLRPC 1.3.0 - Remote Code Execution PEAR XMLRPC Remote Code Execution Vendor: The PEAR Group Product: PEAR XMLRPC Version: = 1.3.0 Website: http://pear.php.net/package/XMLRPC/ CVE: 17793 PACKETSTORM: 38393 Description: PEAR XMLRPC is a PHP implementation of the XML-RPC web RPC protocol, and...

0.2AI score

Exploits0

exploitpack•added 2015/05/16 12:0 a.m.•32 views

Burning Board 2.3.1 - SQL Injection

Burning Board 2.3.1 - SQL Injection Burning Board SQL Injection Vendor: Woltlab GmbH Product: Burning Board Version: = 2.3.1 Website: http://www.woltlab.de/ BID: 13643 CVE: CVE-2005-1642 OSVDB: 16575 SECUNIA: 15395 PACKETSTORM: 39262 Description: Burning Board is a popular, multi purpose forum /...

7.5CVSS0.1AI score0.0051EPSS

Exploit DB•added 2015/05/16 12:0 a.m.•36 views

Burning Board < 2.3.1 - SQL Injection

Burning Board SQL Injection Vendor: Woltlab GmbH Product: Burning Board Version: = 2.3.1 Website: http://www.woltlab.de/ BID: 13643 CVE: CVE-2005-1642 OSVDB: 16575 SECUNIA: 15395 PACKETSTORM: 39262 Description: Burning Board is a popular, multi purpose forum / community software offered by WoltLa...

7.5CVSS6.7AI score0.0051EPSS

Exploit DB•added 2015/04/19 12:0 a.m.•46 views

AZBB < 1.0.07d - Multiple Vulnerabilities

AZBB Multiple Vulnerabilities Vendor: AZBB Product: AZBB Version: = 1.0.07d Website: http://azbb.cyaccess.com/ BID: 13272 13278 CVE: CVE-2005-1200 CVE-2005-1201 OSVDB: 15700 15701 15702 15703 SECUNIA: 15013 PACKETSTORM: 37792 Description: azbb is a forum that was written with a primary focus on...

7.5CVSS6.6AI score0.12779EPSS

Exploit DB•added 2015/01/03 12:0 a.m.•41 views

PhotoPost < 4.85 - Multiple Vulnerabilities

PhotoPost Multiple Vulnerabilities Vendor: All Enthusiast, Inc. Product: PhotoPost Version: = 4.85 Website: http://www.photopost.com/ BID: 12157 CVE: CVE-2005-0273 CVE-2005-0274 OSVDB: 12741 12741 SECUNIA: 13680 PACKETSTORM: 35595 Description: PhotoPost was designed to help you give your users...

7.5CVSS7AI score0.0559EPSS

Exploit DB•added 2015/01/02 12:0 a.m.•29 views

ReviewPost < 2.84 - Multiple Vulnerabilities

ReviewPost Multiple Vulnerabilities Vendor: All Enthusiast, Inc. Product: ReviewPost Version: = 2.84 Website: http://www.reviewpost.com/ BID: 12159 CVE: CVE-2005-0270 CVE-2005-0271 CVE-2005-0272 OSVDB: 12703 12704 12705 12706 12707 12708 SECUNIA: 13697 PACKETSTORM: 35594 Description: Your communi...

7.5CVSS6.5AI score0.03482EPSS

exploitpack•added 2015/01/02 12:0 a.m.•27 views

ReviewPost 2.84 - Multiple Vulnerabilities

ReviewPost 2.84 - Multiple Vulnerabilities ReviewPost Multiple Vulnerabilities Vendor: All Enthusiast, Inc. Product: ReviewPost Version: = 2.84 Website: http://www.reviewpost.com/ BID: 12159 CVE: CVE-2005-0270 CVE-2005-0271 CVE-2005-0272 OSVDB: 12703 12704 12705 12706 12707 12708 SECUNIA: 13697...

7.5CVSS0.3AI score0.03482EPSS