CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Huntr•added 2023/02/12 5:3 a.m.•22 views

Two Stored XSS in Instructions and User Widget

Stored XSS 1 Description 1 The santinizer founction noxsshtml$html can be bypassed since it missed to ban the tag of in $bannedelements = 'script', 'iframe', 'embed';. By this missing, the logged admin can maliciously inject xss payloads like in the backend database using the point POST...

4.3CVSS5.4AI score0.00338EPSS

Exploits1

NVD•added 2022/03/01 3:15 p.m.•11 views

CVE-2021-46387

ZyXEL ZyWALL 2 Plus Internet Security Appliance is affected by Cross Site Scripting XSS. Insecure URI handling leads to bypass security restriction to achieve Cross Site Scripting, which allows an attacker able to execute arbitrary JavaScript codes to perform multiple attacks such as clipboard...

6.1CVSS0.33407EPSS

Exploits4References4

Prion•added 2022/03/01 3:15 p.m.•16 views

Cross site scripting

4.3CVSS6.4AI score0.33407EPSS

Exploits4References4

Cvelist•added 2022/03/01 2:4 p.m.•15 views

CVE-2021-46387

6.6AI score0.33407EPSS

Exploits4References4

Cvelist•added 2021/12/28 12:21 p.m.•11 views

CVE-2021-45425

Reflected Cross Site Scripting XSS in SAFARI Montage versions 8.3 and 8.5 allows remote attackers to execute JavaScript codes...

6.3AI score0.01667EPSS

Exploits4References3

Packet Storm•added 2018/09/22 12:0 a.m.•41 views

MyBB Visual Editor 1.8.18 Cross Site Scripting

Title: MyBB Visual Editor Stored XSS YLOADhttp://victim.com/video 4- Post the thread. While victim user replying your post, his browser will run JavaScript. Vulnerable pages: editpost.php newreply.php private.php and all Visual Editor embedded pages. // for secure days...

0.2AI score0.01121EPSS

Exploits5

Packet Storm•added 2018/08/14 12:0 a.m.•40 views

cPanel 76 Cross Site Scripting

Title: cPanel Filename Based Stored XSS http://ip:2082/cpsessXXXXXXXXXX/frontend/THEME/raw/index.html '; else die'An error occured.'; else echo 'Enter your payload: " "'; // end of the script. ? Note: You cant create a file as named with / slash character by this exploit. This vulnerability is...

0.2AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Collabtive 0.65 - Multiple Vulnerabilities

No description provided by source. ANATOLIA SECURITY ADVISORY ------------------------------------ ADVISORY INFO + Title: Collabtive Multiple Vulnerabilities + Advisory URL: http://www.anatoliasecurity.com/adv/as-adv-2010-003.txt + Advisory ID: 2010-003 + Version: 0.65 + Date: 12/10/2010 + Impact...

7.1AI score

Exploits0

exploitpack•added 2010/10/12 12:0 a.m.•14 views

Collabtive 0.65 - Multiple Vulnerabilities

Collabtive 0.65 - Multiple Vulnerabilities ANATOLIA SECURITY ADVISORY ------------------------------------ ADVISORY INFO + Title: Collabtive Multiple Vulnerabilities + Advisory URL: http://www.anatoliasecurity.com/adv/as-adv-2010-003.txt + Advisory ID: 2010-003 + Version: 0.65 + Date: 12/10/2010 ...

0.3AI score

Exploits0

Exploit DB•added 2010/08/25 12:0 a.m.•27 views

Simple Forum PHP - Multiple Vulnerabilities

Exploit Title: Simple Forum PHP XSS/HTML Injection Vulnerabilities Date: August 25, 2010 Author: arnabs Software Link: http://www.simpleforumphp.com/forum/admin.php?act=topicoptions Price: $24.99 found bug on: http://server/demoguestbook.php?act=new details: you can insert html/javascript codes...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by