CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5116 matches found

Tenable Nessus•added 2016/08/26 12:0 a.m.•20 views

Mozilla Firefox ESR < 45.3 Multiple Vulnerabilities

Binary data 9485.prm...

9.8CVSS8.2AI score0.04615EPSS

Exploits2References20

Openbugbounty•added 2016/08/16 3:46 p.m.•11 views

ua.trovit.com IFRAME Injection vulnerability

Vulnerable URL: http://ua.trovit.com/rabota/index.php/cod.frame/url.http%253A%252F%252Fwww.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 22.07.2017 Latest check for patch:| 22.07.2017 05:19 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclos...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/16 3:43 p.m.•21 views

ru.trovit.com IFRAME Injection vulnerability

Vulnerable URL: http://ru.trovit.com/rabota/index.php/cod.frame/url.http%253A%252F%252Fwww.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 22.07.2017 Latest check for patch:| 22.07.2017 05:18 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclos...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/16 3:36 p.m.•19 views

de.trovit.com IFRAME Injection vulnerability

Vulnerable URL: http://de.trovit.com/jobs/index.php/cod.frame/url.http%253A%252F%252Fwww.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 21.07.2017 Latest check for patch:| 21.07.2017 13:31 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/15 7:14 p.m.•13 views

springmeadownursery.com IFRAME Injection vulnerability

Vulnerable URL: http://springmeadownursery.com/search.php?q=%3Ciframe+src%3D%22http%3A%2F%2Fwww.openbugbounty.org%22%3E%3C%2Fiframe%3E Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 12:35 GMT Vulnerability type:| IFRAME Injection Vulnerability...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/14 2:37 p.m.•13 views

library.msu.ac.th IFRAME Injection vulnerability

Vulnerable URL: http://library.msu.ac.th/webu/dublin.linkout.php?url=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 10:56 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/13 5:39 p.m.•8 views

ostwuerttemberg.de IFRAME Injection vulnerability

Vulnerable URL: http://www.ostwuerttemberg.de/de/fde.asp?page=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 16280167 VIP website status:...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/13 11:25 a.m.•12 views

118go.com IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-174081 Description| Value ---|--- Affected Website:| 118go.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

6.7AI score

Exploits0

Openbugbounty•added 2016/08/12 3:18 p.m.•16 views

colorado.edu IFRAME Injection vulnerability

Vulnerable URL: http://www.colorado.edu/eventscalendar/cgi-bin/frame.cgi?parent=viewURL=https://www.openbugbounty.org" name="bottom" frameborder="no" marginwidth="0" marginheight="0" Details: Description| Value ---|--- Patched:| Yes, at 27.08.2016 Latest check for patch:| 27.08.2016 08:17 GMT...

7.2AI score

Exploits0

Openbugbounty•added 2016/08/10 11:2 a.m.•11 views

yellowpages.com.vn IFRAME Injection vulnerability

Vulnerable URL: http://www.yellowpages.com.vn/homepages.php?url=www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 1752205 VIP website status:| No...

7.2AI score

Exploits0

CNVD•added 2016/08/10 12:0 a.m.•1 views

Microsoft Internet Explorer Local Filename Information Disclosure Vulnerability

Internet Explorer is a web browser from Microsoft. Microsoft Internet Explorer has different feedback in the file:// URL for existing and non-existing files, and if used in conjunction with an HTML5 sandbox iframe, a local attacker could exploit this vulnerability to obtain local file existence...

2.5CVSS6.5AI score0.35331EPSS

Exploits2References1

NVD•added 2016/08/09 9:59 p.m.•19 views

CVE-2016-3321

Microsoft Internet Explorer 10 and 11 load different files for attempts to open a file:// URL depending on whether the file exists, which allows local users to enumerate files via vectors involving a file:// URL and an HTML5 sandbox iframe, aka "Internet Explorer Information Disclosure...

2.5CVSS3.1AI score0.35331EPSS

Exploits2References6

Openbugbounty•added 2016/08/08 10:26 a.m.•13 views

egitimcafe.com IFRAME Injection vulnerability

Vulnerable URL: http://egitimcafe.com/redirector.php?url=http://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 3580765 VIP website status:| No...

7.2AI score

Exploits0

OSV•added 2016/08/08 12:59 a.m.•2 views

CVE-2016-1474

Cisco Prime Infrastructure 2.22 does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting XFS" issue, aka Bug ID CSCuw65846, a different...

4.3CVSS5.8AI score

Exploits0References3

Cvelist•added 2016/08/08 12:0 a.m.•19 views

CVE-2016-1474

4.9AI score0.01348EPSS

Exploits0References3

OSV•added 2016/08/05 1:59 a.m.•1 views

DEBIAN-CVE-2016-5262

Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 process JavaScript event-handler attributes of a MARQUEE element within a sandboxed IFRAME element that lacks the sandbox="allow-scripts" attribute value, which makes it easier for remote attackers to conduct cross-site scripting XSS...

6.1CVSS7.6AI score0.01476EPSS

Exploits0References1

OSV•added 2016/08/05 1:59 a.m.•6 views

CVE-2016-5262

6.1CVSS8.4AI score

Exploits0References11

Cvelist•added 2016/08/05 1:0 a.m.•25 views

CVE-2016-5262

6.9AI score0.01476EPSS

Exploits0References11

Cisco•added 2016/08/03 4:0 p.m.•25 views

Cisco Prime Infrastructure Cross-Frame Scripting Vulnerability

A vulnerability in the web interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to execute a cross-frame scripting XFS attack. This vulnerability is due to insufficient HTML iframe protection. An attacker could exploit this vulnerability by directing a user to a...

4.3CVSS4.7AI score0.01348EPSS

Exploits0References1

Openbugbounty•added 2016/08/03 1:37 p.m.•8 views

molotow.com XSS vulnerability

Vulnerable URL: http://www.molotow.com/typo3conf/ext/slmolotowproducts/iframe.php?h="=x Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 23:08 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 522903 VIP website...

6.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by