Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2010-5240

Malware in sbrugna...

6.8CVSS6.4AI score0.04888EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2012-1485

Malware in sbrugna...

6.5CVSS6.2AI score0.03056EPSS
Exploits2References4
RedhatCVE
RedhatCVEadded 2025/05/22 12:17 p.m.9 views

CVE-2012-1467

Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to 1 delete or 2 rename arbitrary files via a .. dot dot in the param parameter to...

6.5CVSS6.8AI score0.03056EPSS
Exploits2References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.19 views

iBrowser Plugin 1.4.1 (lang) - Local File Inclusion Vulnerability

No description provided by source...

7.1AI score
Exploits0
NVD
NVDadded 2012/11/26 11:55 p.m.12 views

CVE-2010-5281

Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the lang parameter. NOTE: some of these details are obtained from third party information...

6.8CVSS6.6AI score0.04888EPSS
Exploits1References5
Prion
Prionadded 2012/11/26 11:55 p.m.8 views

Directory traversal

Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the lang parameter. NOTE: some of these details are obtained from third party information...

6.8CVSS7.1AI score0.04888EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2012/11/26 11:0 p.m.39 views

CVE-2010-5281

CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1 is affected by a directory traversal in ibrowser.php. When magic_quotes_gpc is disabled, an attacker can read arbitrary files by injecting a .. into the lang parameter. This is a true vulnerability with CVE-2010-5281 documented by NVD (base score 6.8, ve...

6.8CVSS6.8AI score0.04888EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2012/11/26 11:0 p.m.19 views

CVE-2010-5281

Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the lang parameter. NOTE: some of these details are obtained from third party information...

6.6AI score0.04888EPSS
Exploits1References5
NVD
NVDadded 2012/09/06 9:55 p.m.21 views

CVE-2012-1467

Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to 1 delete or 2 rename arbitrary files via a .. dot dot in the param parameter to...

6.5CVSS6.5AI score0.03056EPSS
Exploits2References2
NVD
NVDadded 2012/09/06 9:55 p.m.13 views

CVE-2012-1469

Multiple cross-site scripting XSS vulnerabilities in Open Journal Systems before 2.3.7 allow remote attackers and remote authenticated users to inject arbitrary web script or HTML via the 1 editor or 2 callback parameters to lib/pkp/lib/tinymce/jscripts/tinymce/plugins/ibrowser/ibrowser.php in th...

4.3CVSS5.4AI score0.24771EPSS
Exploits2References13
ATTACKERKB
ATTACKERKBadded 2012/09/06 9:55 p.m.2 views

CVE-2012-1467

Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to 1 delete or 2 rename arbitrary files via a .. dot dot in the param parameter to...

6.5CVSS5.8AI score0.03056EPSS
Exploits2References3
UbuntuCve
UbuntuCveadded 2012/09/06 9:55 p.m.22 views

CVE-2012-1467

Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to 1 delete or 2 rename arbitrary files via a .. dot dot in the param parameter to...

6.5CVSS6AI score0.03056EPSS
Exploits2References3
UbuntuCve
UbuntuCveadded 2012/09/06 9:55 p.m.26 views

CVE-2012-1469

Multiple cross-site scripting XSS vulnerabilities in Open Journal Systems before 2.3.7 allow remote attackers and remote authenticated users to inject arbitrary web script or HTML via the 1 editor or 2 callback parameters to lib/pkp/lib/tinymce/jscripts/tinymce/plugins/ibrowser/ibrowser.php in th...

4.3CVSS6AI score0.24771EPSS
Exploits2References10
Prion
Prionadded 2012/09/06 9:55 p.m.17 views

Directory traversal

Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to 1 delete or 2 rename arbitrary files via a .. dot dot in the param parameter to...

6.5CVSS7AI score0.03056EPSS
Exploits2References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2012/09/06 9:55 p.m.2 views

CVE-2012-1469

Multiple cross-site scripting XSS vulnerabilities in Open Journal Systems before 2.3.7 allow remote attackers and remote authenticated users to inject arbitrary web script or HTML via the 1 editor or 2 callback parameters to lib/pkp/lib/tinymce/jscripts/tinymce/plugins/ibrowser/ibrowser.php in th...

4.3CVSS5.4AI score0.24771EPSS
Exploits2References14
Cvelist
Cvelistadded 2012/09/06 9:0 p.m.19 views

CVE-2012-1467

Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems before 2.3.7, allow remote authenticated users to 1 delete or 2 rename arbitrary files via a .. dot dot in the param parameter to...

6.5AI score0.03056EPSS
Exploits2References2
CVE
CVEadded 2012/09/06 9:0 p.m.44 views

CVE-2012-1467

CVE-2012-1467 relates to Open Journal Systems (OJS) versions prior to 2.3.7, where multiple directory traversal vulnerabilities exist in the iBrowser plugin library. Specifically, the param parameter passed to /lib/pkp/lib/tinymce/jscripts/tiny_mce/plugins/ibrowser/scripts/rfiles.php can be manip...

6.5CVSS6.6AI score0.03056EPSS
Exploits2References2Affected Software1
exploitpack
exploitpackadded 2011/09/19 12:0 a.m.12 views

net4visions (Multiple Products) - dir Multiple Cross-Site Scripting Vulnerabilities

net4visions Multiple Products - dir Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49675/info net4visions is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

Exploits0
Exploit DB
Exploit DBadded 2011/09/19 12:0 a.m.21 views

net4visions (Multiple Products) - 'dir' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49675/info net4visions is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2011/09/18 12:0 a.m.34 views

iBrowser Plugin 1.4.1 Cross Site Scripting

iBrowser Plugin v1.4.1 dir Remote Cross-Site Scripting Vulnerability Vendor: net4visions.com Product web page: http://www.net4visions.com Affected version: alert'zsl' http://SOMECMS/jscripts/tinymce/plugins/ibrowser/scripts/phpThumb/demo/phpThumb.demo.random.php?dir=alert'zsl'...

7.4AI score
Exploits0
Rows per page
Query Builder