CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

41 matches found

exploitpack•added 2004/06/28 12:0 a.m.•17 views

CuteNews 0.881.3 - example1.php Cross-Site Scripting

CuteNews 0.881.3 - example1.php Cross-Site Scripting source: https://www.securityfocus.com/bid/10620/info It is reported that CuteNews is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. T...

Exploit DB•added 2004/06/28 12:0 a.m.•22 views

CuteNews 0.88/1.3 - 'example2.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/10620/info It is reported that CuteNews is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. The problems present themselves when malicious HTML an...

Exploit DB•added 2004/05/05 12:0 a.m.•23 views

PHPX 3.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/10283/info It has been reported that PHPX is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. These issues could permit a remote attacker to creat...

Exploit DB•added 2004/04/21 12:0 a.m.•35 views

PostNuke Phoenix 0.726 - 'openwindow.php?hlpfile' Cross-Site Scripting

source: https://www.securityfocus.com/bid/10191/info Multiple vulnerabilities were reported to exist in PostNuke Phoenix. The following specific vulnerabilities were reported: - Multiple path disclosure vulnerabilities that occur when a user directly requests scripts in the "/includes/blocks/" an...

Exploit DB•added 2004/04/14 12:0 a.m.•30 views

Rhino Software Zaep AntiSpam 2.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/10139/info It has been reported that Zaep AntiSpam is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user supplied URI input. This issue could permit a remote attacker to create a...

exploitpack•added 2004/04/13 12:0 a.m.•13 views

PHP-Nuke 6.x7.x - CookieDecode Cross-Site Scripting

PHP-Nuke 6.x7.x - CookieDecode Cross-Site Scripting source: https://www.securityfocus.com/bid/10128/info Reportedly PHP-NuKe is prone to a remote cross-site scripting vulnerability. This issue is due to a failure of the 'cookiedecode' function to properly sanitize user supplied cookie parameters...

Exploit DB•added 2004/04/13 12:0 a.m.•40 views

PHP-Nuke 6.x/7.x - CookieDecode Cross-Site Scripting

source: https://www.securityfocus.com/bid/10128/info Reportedly PHP-NuKe is prone to a remote cross-site scripting vulnerability. This issue is due to a failure of the 'cookiedecode' function to properly sanitize user supplied cookie parameters. These issues could permit a remote attacker to crea...

Exploit DB•added 2004/03/31 12:0 a.m.•20 views

CactuSoft CactuShop 5.0/5.1 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/10020/info Reportedly CactuShop is prone to a remote cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user supplied URI input. This issue could permit a remote attacker to create a malicious link t...

exploitpack•added 2004/03/31 12:0 a.m.•11 views

CactuSoft CactuShop 5.05.1 - Cross-Site Scripting

CactuSoft CactuShop 5.05.1 - Cross-Site Scripting source: https://www.securityfocus.com/bid/10020/info Reportedly CactuShop is prone to a remote cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user supplied URI input. This issue could...

exploitpack•added 2004/03/22 12:0 a.m.•7 views

PHP-Nuke MS-Analysis Module - Multiple Cross-Site Scripting Vulnerabilities

PHP-Nuke MS-Analysis Module - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/9947/info It has been reported that MS-Analysis is prone to a multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly...

Exploit DB•added 2004/02/23 12:0 a.m.•26 views

LiveJournal 1.1 - CSS HTML Injection

source: https://www.securityfocus.com/bid/9727/info LiveJournal is reportedly prone to HTML injection via Cascading Style Sheet CSS tags. It is possible to inject hostile HTML and script code into journal entries through this vulnerability. This could potentially be exploited to steal cookies fro...

exploitpack•added 2004/01/19 12:0 a.m.•14 views

PHPGedView 2.x - Descendancy.php Cross-Site Scripting

PHPGedView 2.x - Descendancy.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11868/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...

exploitpack•added 2004/01/12 12:0 a.m.•8 views

PHPGedView 2.52.6 - Gdbi_interface.php Cross-Site Scripting

PHPGedView 2.52.6 - Gdbiinterface.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11894/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This...

Exploit DB•added 2004/01/12 12:0 a.m.•16 views

PHPGedView 2.5/2.6 - 'Gedrecord.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/11891/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...

exploitpack•added 2004/01/12 12:0 a.m.•13 views

PHPGedView 2.52.6 - login.php?URL Cross-Site Scripting

PHPGedView 2.52.6 - login.php?URL Cross-Site Scripting source: https://www.securityfocus.com/bid/11903/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issu...

Exploit DB•added 2003/09/01 12:0 a.m.•31 views

Ezboard - 'invitefriends.php3' Cross-Site Scripting

source: https://www.securityfocus.com/bid/8519/info The 'invitefriends.php3' script of Ezboard has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of sufficient sanitization performed on user-supplied URI parameters. This issue could be exploited to cause hosti...

Exploit DB•added 2003/07/21 12:0 a.m.•32 views

Savant Web Server 3.1 - CGITest.HTML Cross-Site Scripting

source: https://www.securityfocus.com/bid/8242/info cgitest.html has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of sufficient sanitization performed on data supplied to the cgitest.html script. This issue could be exploited to cause hostile HTML and script...

exploitpack•added 2003/06/13 12:0 a.m.•20 views

PostNuke 0.723 - Multiple Cross-Site Scripting Vulnerabilities

PostNuke 0.723 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/7898/info The PostNuke 'modules.php' script does not sufficiently sanitize data supplied via URI parameters, making it prone to cross-site scripting attacks. This could allow for execution of...

securityvulns•added 2003/03/15 12:0 a.m.•30 views

Guestbook v1.1.3 CSS Vuln

Project: Filebased guestbook. Author: Copyright c Urs [email protected] Version: 1.1.3 Update: 17-09-2002 Homepage: http://www.circle.ch/scripts/ This PHP guest book script is vulnerable to hostile cross scripting in the 'comment' section of guest book posts. Comments span across multiple pages, with...

exploitpack•added 2002/10/12 12:0 a.m.•31 views

PHP 4 - PHPInfo() Cross-Site Scripting

PHP 4 - PHPInfo Cross-Site Scripting source: https://www.securityfocus.com/bid/7805/info Scripts that include the PHP phpinfo debugging function may be prone to cross-site scripting attacks. This could permit remote attackers to create a malicious link to a vulnerable PHP script that includes...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by