CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1007 matches found

Exploit DB•added 2009/11/27 12:0 a.m.•38 views

PHP-Nuke 8.0 - News Module Cross-Site Scripting / HTML Code Injection

Software Link: http://www.phpnuke.org/modules.php?name=Downloads&dop=viewdownload&cid=1 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= note : This bug found by tampering passed data . coders don't sanitize and check user entry point for news rate...

7.4AI score

Exploits0

exploitpack•added 2009/11/27 12:0 a.m.•14 views

PHP-Nuke 8.0 - News Module Cross-Site Scripting HTML Code Injection

PHP-Nuke 8.0 - News Module Cross-Site Scripting HTML Code Injection Software Link: http://www.phpnuke.org/modules.php?name=Downloads&dop=viewdownload&cid=1 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= note : This bug found by tampering passed data . coders don't sanitize and che...

0.1AI score

Exploits0

0day.today•added 2009/11/27 12:0 a.m.•21 views

PHP-Nuke <= 8.0 XSS & HTML Code Injection in News Module

Exploit for unknown platform in category web applications ======================================================== PHP-Nuke alert/XSS/.source 2. Html code injection : -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= 0day.today 2018-03-19...

7.1AI score

Exploits0

seebug.org•added 2009/11/27 12:0 a.m.•7 views

Micronet SP1910 Data Access Controller UI XSS & HTML Code Injection

No description provided by source. Exploit: XSS & Html code injection in Micronet SP1910 data access controller UI Date: 27-11-2009 Author: K053 Vendor: http://www.micronet.info/modeldetail.aspx?seriesno=6&sno=472 Tested on : Private Networks...

7.1AI score

Exploits0

exploitpack•added 2009/11/27 12:0 a.m.•16 views

Micronet SP1910 Data Access Controller UI - Cross-Site Scripting HTML Code Injection

Micronet SP1910 Data Access Controller UI - Cross-Site Scripting HTML Code Injection Exploit: XSS & Html code injection in Micronet SP1910 data access controller UI Date: 27-11-2009 Author: K053 Vendor: http://www.micronet.info/modeldetail.aspx?seriesno=6&sno=472 Tested on : Private Networks...

0.3AI score

Exploits0

OpenVAS•added 2009/11/26 12:0 a.m.•22 views

Axon Virtual PBX Multiple XSS Vulnerabilities

Axon Virtual PBX is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS6.1AI score0.00318EPSS

Exploits0References2

Check Point Advisories•added 2009/11/11 12:0 a.m.•1 views

Oracle Application Server Portal Cross Site Scripting

Oracle Application Server is a multi-platform solution for developing and deploying enterprise applications and web sites. The server ships with several additional components that extend its functionality. Oracle's Single Sign-On Server SSO was part of Oracle Application Server till version...

7.2AI score

Exploits0

OpenVAS•added 2009/09/15 12:0 a.m.•28 views

Debian: Security Advisory (DSA-1883-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.0048EPSS

Exploits1References3

Prion•added 2009/09/11 4:30 p.m.•15 views

Cross site scripting

Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...

4.3CVSS6.3AI score0.00318EPSS

Exploits0References4Affected Software1

exploitpack•added 2009/08/28 12:0 a.m.•11 views

Open Classifieds - Multiple Cross-Site Scripting Vulnerabilities

Open Classifieds - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43335/info Open Classifieds is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

Exploits0

Packet Storm•added 2009/08/13 12:0 a.m.•14 views

JibberBook Disclosure / Injection

» Script: JibberBook » Language: PHP » Website: http://jibberbook.com » Founder: Onur YILMAZ aka DJR » Site: www.onuryilmaz.info === data source of comments disclosure .xml file === » JibberBook/datalayer/xml/comments.xml === output === 127.0.0.1 Mozilla/5.0 Windows; U; Windows NT 6.0; en-US...

7.4AI score

Exploits0

securityvulns•added 2009/08/12 12:0 a.m.•43 views

JibberBook GuestBook 2.3 Multiple Vulnerabilities

» Script: JibberBook » Language: PHP » Website: http://jibberbook.com » Founder: Onur YILMAZ aka DJR » Site: www.onuryilmaz.info === data source of comments disclosure .xml file === » JibberBook/datalayer/xml/comments.xml === output === message mID="m54a7c965f0318a7.23679427" name/name website /...

0.1AI score

Exploits0

0day.today•added 2009/08/06 12:0 a.m.•16 views

PHP Script Forum Hoster (Topic Delete/XSS) Multiple Vulnerabilities

Exploit for unknown platform in category web applications =================================================================== PHP Script Forum Hoster Topic Delete/XSS Multiple Vulnerabilities =================================================================== "Word is born Fight the war fuck the...

7.1AI score

Exploits0

OpenVAS•added 2009/07/09 12:0 a.m.•33 views

Sun Java Web Console Multiple XSS Vulnerabilities

The host is running Java Web Console and is prone to Multiple Cross-Site Scripting Vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavawebconsolexssvuln.nasl 4892 2016-12-30 15:39:07Z teissa $ Sun Java Web Console Multiple XSS Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009...

4.3CVSS0.6AI score0.002EPSS

Exploits0References3

OpenVAS•added 2009/07/09 12:0 a.m.•31 views

Sun Java Web Console 3.0.2 - 3.0.5 Multiple XSS Vulnerabilities

Java Web Console is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.1AI score0.002EPSS

Exploits0References4

FreeBSD•added 2009/06/03 12:0 a.m.•33 views

joomla -- multiple vulnerabilities

Secunia reports: Some vulnerabilities have been reported in Joomla!, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. Certain unspecified input is not properly sanitised before being used. This can be...

4.3CVSS6.6AI score0.00122EPSS

Exploits1References2

FreeBSD•added 2009/05/28 12:0 a.m.•17 views

horde-base -- multiple vulnerabilities

The Horde team reports: An error within the form library when handling image form fields can be exploited to overwrite arbitrary local files. An error exists within the MIME Viewer library when rendering unknown text parts. This can be exploited to execute arbitrary HTML and script code in a user...

7.4AI score

Exploits0References4

Packet Storm•added 2009/05/27 12:0 a.m.•17 views

Vanilla 1.1.7 Cross Site Scripting

Author: Gerendi Sandor Attila Original advisory: http://gsasec.blogspot.com/2009/05/vanilla-v117-cross-site-scripting.html Date: May 14, 2009 Package: Vanilla 1.1.7 Product Homepage: http://getvanilla.com/ Versions Affected: v.1.1.7, 1.1.5 Other versions may also be affected Severity: Medium Inpu...

Exploits0

securityvulns•added 2009/05/11 12:0 a.m.•38 views

Claroline v.1.8.11 Cross-Site Scripting

Author: Gerendi Sandor Attila Original Advisory: http://gsasec.blogspot.com/2009/05/claroline-v1811-cross-site-scripting.html Date: May 05, 2009 Package: Claroline 1.8.11 Product Homepage: http://www.claroline.net/ Versions Affected: v.1.8.11 Other versions may also be affected Severity: Medium...

0.3AI score

Exploits0

Packet Storm•added 2009/05/08 12:0 a.m.•17 views

Claroline 1.8.11 Cross Site Scripting

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by