Lucene search
+L

300 matches found

Exploit DB
Exploit DB
added 2008/09/04 12:0 a.m.29 views

XRms 1.99.2 - 'opportunity_title' Cross-Site Scripting

source: https://www.securityfocus.com/bid/31008/info XRMS CRM is prone to multiple input-validation vulnerabilities, including an unspecified SQL-injection issue, an HTML-injection issue, and multiple cross-site scripting issues. The vulnerabilities occur because the application fails to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/07/30 12:0 a.m.24 views

DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities

DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/30447/info DEV Web Management System is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include local...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2008/07/21 12:0 a.m.28 views

EasyDynamicPages 3.0 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities

EasyDynamicPages 3.0 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/30305/info EasyDynamicPages is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and a cross-site scripting issue, because it fails to...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/21 12:0 a.m.30 views

EasyE-Cards 3.10 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/30328/info EasyE-Cards is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/07/15 12:0 a.m.14 views

Claroline 1.8.9 - announcementsannouncements.php Cross-Site Scripting

Claroline 1.8.9 - announcementsannouncements.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2008/07/15 12:0 a.m.10 views

Claroline 1.8.9 - phpBBreply.php Cross-Site Scripting

Claroline 1.8.9 - phpBBreply.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/15 12:0 a.m.27 views

Claroline 1.8.9 - 'work/work.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/15 12:0 a.m.20 views

Claroline 1.8.9 - 'phpBB/reply.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/15 12:0 a.m.30 views

Claroline 1.8.9 - 'exercise/exercise.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2008/07/09 12:0 a.m.25 views

CVE-2008-3081

Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...

7.6AI score0.03058EPSS
Exploits0References21
exploitpack
exploitpack
added 2008/06/26 12:0 a.m.11 views

The Rat CMS - viewarticle2.php?id SQL Injection

The Rat CMS - viewarticle2.php?id SQL Injection source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data...

8.7AI score
Exploits0
Exploit DB
Exploit DB
added 2008/06/26 12:0 a.m.48 views

The Rat CMS - 'viewarticle.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

7AI score
Exploits0
exploitpack
exploitpack
added 2008/05/26 12:0 a.m.13 views

ClassSystem 2.02.3 - MessageReply.php?teacher_id SQL Injection

ClassSystem 2.02.3 - MessageReply.php?teacherid SQL Injection source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2008/05/26 12:0 a.m.22 views

Campus Bulletin Board 3.4 - post3book.asp?review Cross-Site Scripting

Campus Bulletin Board 3.4 - post3book.asp?review Cross-Site Scripting source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2008/05/26 12:0 a.m.8 views

ClassSystem 2.02.3 - classApplyDB.php Unrestricted Arbitrary File Upload Arbitrary Code Execution

ClassSystem 2.02.3 - classApplyDB.php Unrestricted Arbitrary File Upload Arbitrary Code Execution source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues inclu...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/05/26 12:0 a.m.46 views

Campus Bulletin Board 3.4 - '/post3/view.asp?id' SQL Injection

source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/29 12:0 a.m.47 views

Cuteflow Bin 1.5 - pages/showcirculation.php language Parameter XSS

Cuteflow Bin 1.5 pages/showcirculation.php language Parameter XSS. CVE-2008-1630. Webapps exploit for php platform source: http://www.securityfocus.com/bid/28500/info CuteFlow Bin is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. T...

4.3CVSS6.6AI score0.01107EPSS
Exploits7
exploitpack
exploitpack
added 2008/03/08 12:0 a.m.23 views

Alkacon OpenCMS 7.0.3 - logfileViewSettings.jsp?filePath.0 Arbitrary File Access

Alkacon OpenCMS 7.0.3 - logfileViewSettings.jsp?filePath.0 Arbitrary File Access source: https://www.securityfocus.com/bid/28152/info Alkacon OpenCms is prone to multiple input-validation vulnerabilities, including one cross-site scripting issue and a file-disclosure issue, because the applicatio...

Exploits0
exploitpack
exploitpack
added 2008/02/15 12:0 a.m.17 views

Dokeos 1.8.4 - mainmySpaceindex.php?tracking_list_coaches_column SQL Injection

Dokeos 1.8.4 - mainmySpaceindex.php?trackinglistcoachescolumn SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

8.6AI score
Exploits0
exploitpack
exploitpack
added 2008/02/15 12:0 a.m.11 views

Dokeos 1.8.4 - maincreate_courseadd_course.php?tutor_name SQL Injection

Dokeos 1.8.4 - maincreatecourseaddcourse.php?tutorname SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

8.6AI score
Exploits0
Rows per page
Query Builder