CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

securityvulns•added 2014/05/04 12:0 a.m.•56 views

Cross-Site Scripting (XSS) in Open Classifieds

Advisory ID: HTB23204 Product: Open Classifieds Vendor: Open Classifieds Team Vulnerable Versions: 2-2.1.2 and probably prior Tested Version: 2-2.1.2 Advisory Publication: February 19, 2014 without technical details Vendor Notification: February 19, 2014 Vendor Patch: February 20, 2014 Public...

4.3CVSS6.3AI score0.00374EPSS

Exploits4

Exploit DB•added 2014/04/10 12:0 a.m.•69 views

XCloner Standalone 3.5 - Cross-Site Request Forgery

Advisory ID: HTB23207 Product: XCloner Standalone Vendor: XCloner Vulnerable Versions: 3.5 and probably prior Tested Version: 3.5 Advisory Publication: March 14, 2014 without technical details Vendor Notification: March 14, 2014 Public Disclosure: April 9, 2014 Vulnerability Type: Cross-Site...

7.6CVSS7AI score0.0129EPSS

Exploits6

Exploit DB•added 2013/10/02 12:0 a.m.•77 views

Gnew 2013.1 - Multiple Vulnerabilities (2)

Advisory ID: HTB23171 Product: Gnew Vendor: Raoul ProenÃ§a Vulnerable Versions: 2013.1 and probably prior Tested Version: 2013.1 Advisory Publication: August 28, 2013 without technical details Vendor Notification: August 28, 2013 Public Disclosure: October 2, 2013 Vulnerability Type: PHP File...

7.5CVSS7AI score0.04589EPSS

Exploits7

OpenVAS•added 2012/07/25 12:0 a.m.•20 views

Serendipity 'functions_trackbacks.inc.php' SQLi Vulnerability - Active Check

Serendipity is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.5CVSS5.8AI score0.00717EPSS

Exploits3References4

Tenable Nessus•added 2012/04/13 12:0 a.m.•22 views

Dolibarr Multiple Script URI XSS

The version of Dolibarr on the remote host fails to properly sanitize parameters in 'index.php' before using them to generate dynamic HTML. By tricking someone into clicking on a specially crafted link, an attacker may be able exploit this issue to inject arbitrary HTML and script code in a user'...

4.3CVSS5.7AI score0.05458EPSS

Exploits1References2

OpenVAS•added 2012/04/04 12:0 a.m.•23 views

BackupPC < 3.2.1 Multiple XSS Vulnerabilities - Active Check

BackupPC is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5.8AI score

Exploits0References9

OpenVAS•added 2011/10/20 12:0 a.m.•23 views

Eclime Multiple SQL Injection and Cross-site Scripting Vulnerabilities

Eclime is prone to multiple cross site scripting and SQL injection vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

7.5CVSS7AI score0.02306EPSS

Exploits2References6

OpenVAS•added 2011/09/15 12:0 a.m.•14 views

Support Incident Tracker (SiT!) < 3.65 Multiple Vulnerabilities - Active Check

Support Incident Tracker SiT! is prone to multiple vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.3AI score

Exploits0References4

Exploit DB•added 2011/02/15 12:0 a.m.•31 views

Seo Panel 2.2.0 - SQL Injection

Vulnerability ID: HTB22824 Reference: http://www.htbridge.ch/advisory/sqlinjectioninseopanel1.html Product: Seo Panel Vendor: http://www.seopanel.in/ http://www.seopanel.in/ Vulnerable Version: 2.2.0 Vendor Notification: 01 February 2011 Vulnerability Type: SQL Injection Risk level: High Credit:...

7AI score

Exploits0

OpenVAS•added 2010/11/05 12:0 a.m.•19 views

JAF CMS <= 4.0 RC2 Multiple Vulnerabilities

JAF CMS is prone to a shell command execution vulnerability and multiple remote file include vulnerabilities because the application fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

7.8AI score

Exploits0References5

0day.today•added 2010/10/28 12:0 a.m.•19 views

BloofoxCMS Registration Plugin SQL Injection Vulnerability

Exploit for php platform in category web applications ========================================================== BloofoxCMS Registration Plugin SQL Injection Vulnerability ========================================================== Reference:...

7.1AI score

Exploits0

exploitpack•added 2010/10/27 12:0 a.m.•22 views

Zomplog 3.9 - Multiple Cross-Site Scripting Cross-Site Request Forgery Vulnerabilities

Zomplog 3.9 - Multiple Cross-Site Scripting Cross-Site Request Forgery Vulnerabilities Vulnerability ID: HTB22643 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinzomplog1.html Product: Zomplog Vendor: Gerben Schmidt http://www.zomp.nl/zomplog/ Vulnerable Version: 3.9 and probably pri...

0.4AI score

Exploits0

securityvulns•added 2010/08/30 12:0 a.m.•47 views

SQL injection vulnerability in CompuCMS

Vulnerability ID: HTB22585 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityincompucms2.html Product: CompuCMS Vendor: CompuSoft A/S http://www.compusoft.dk/ Vulnerable Version: Current at 06.08.2010 and Probably Prior Versions Vendor Notification: 09 August 2010 Vulnerability...

0.6AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by