CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-1148

Malware in sbrugna...

2.6CVSS6.4AI score0.01355EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-1239

Malware in sbrugna...

5CVSS6.4AI score0.00816EPSS

Exploits0References5

seebug.org•added 2014/07/01 12:0 a.m.•17 views

HitHost 1.0 viewuser.php hits Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

HitHost 1.0 deleteuser.php user Parameter XSS

7.1AI score

Exploits0

NVD•added 2006/03/14 11:2 p.m.•14 views

CVE-2006-1235

Directory traversal vulnerability in admin/deleteuser.php in HitHost 1.0.0 might allow remote attackers to delete directories possibly only empty directories via the $deleteuser variable. NOTE: the initial disclosure for this issue indicated that the researcher was unable to prove this issue;...

5CVSS6.8AI score0.00816EPSS

Exploits0References4

Prion•added 2006/03/14 11:2 p.m.•13 views

Directory traversal

5CVSS7.3AI score0.00816EPSS

Exploits0References4Affected Software1

CVE•added 2006/03/14 11:0 p.m.•36 views

CVE-2006-1235

CVE-2006-1235 describes a directory traversal vulnerability in HitHost 1.0.0, specifically in admin/deleteuser.php, where the $deleteuser parameter could allow remote attackers to delete directories (possibly only empty ones). The initial disclosure notes that proof of the issue was inconclusive ...

5CVSS6.8AI score0.00816EPSS

Exploits0References4Affected Software1

Prion•added 2006/03/10 11:2 a.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in HitHost 1.0.0 allows remote attackers to inject arbitrary web script or HTML via 1 the user parameter in deleteuser.php and 2 the hits parameter in viewuser.php...

2.6CVSS6.2AI score0.01355EPSS

Exploits0References7Affected Software1

NVD•added 2006/03/10 11:2 a.m.•12 views

CVE-2006-1144

2.6CVSS5.7AI score0.01355EPSS

Exploits0References7

Cvelist•added 2006/03/10 11:0 a.m.•13 views

CVE-2006-1144

5.7AI score0.01355EPSS

Exploits0References7

CVE•added 2006/03/10 11:0 a.m.•35 views

CVE-2006-1144

CVE-2006-1144 concerns HitHost 1.0.0 and is an XSS vulnerability. The issue allows remote attackers to inject arbitrary web script or HTML via two parameters: (1) user in deleteuser.php and (2) hits in viewuser.php. The NVD entry lists a low base score (CVSS v2: 2.6, AV:N/AC:H/Au:N/I:P/A:N) with ...

2.6CVSS5.7AI score0.01355EPSS

Exploits0References7Affected Software1

securityvulns•added 2006/03/09 12:0 a.m.•34 views

[SA19155] HitHost Cross-Site Scripting and Directory Deletion

TITLE: HitHost Cross-Site Scripting and Directory Deletion SECUNIA ADVISORY ID: SA19155 VERIFY ADVISORY: http://secunia.com/advisories/19155/ CRITICAL: Less critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: HitHost 1.x http://secunia.com/product/8604/...

0.5AI score

Exploits0

securityvulns•added 2006/03/07 12:0 a.m.•32 views

histhost v1.0.0 xss and possible rmdir

——– summary software: HitHost vendors website: http://daverave.64digits.com/index.php?page=hithost versions: = 1.0.0 class: remote status: unpatched exploit: available solution: not available discovered by: retard risk level: medium ——– description hithost uses $GET variables in crucial parts of...

0.3AI score

Exploits0

exploitpack•added 2006/03/06 12:0 a.m.•13 views

HitHost 1.0 - deleteuser.php?user Cross-Site Scripting

HitHost 1.0 - deleteuser.php?user Cross-Site Scripting source: https://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

6.8AI score

Exploits0

Exploit DB•added 2006/03/06 12:0 a.m.•20 views

HitHost 1.0 - 'deleteuser.php?user' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in th...

7.4AI score

Exploits0

Exploit DB•added 2006/03/06 12:0 a.m.•34 views

HitHost 1.0 - 'viewuser.php?hits' Cross-Site Scripting

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by