Lucene search
K

84 matches found

Nuclei
Nuclei
added 14 hours ago21 views

PHPJabbers Yacht Listing Script v1.0 - Cross-Site Scripting

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0. id: CVE-2023-40750 info: name: PHPJabbers Yacht Listing Script v1.0 - Cross-Site Scripting author: ritikchaddha severity: medium description: | There is a Cross Site...

6.1CVSS6.4AI score0.00974EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/10 9:4 p.m.13 views

CVE-2026-25557

Evoluted PHP Directory Listing Script through 4.0.5 contains a reflected cross-site scripting vulnerability in index.php where the dir parameter value is reflected without HTML encoding inside the HTML title element and inside anchor href attributes in the breadcrumb navigation. Attackers can...

5.4CVSS5.5AI score0.00187EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 9:17 p.m.11 views

CVE-2026-25557

Evoluted PHP Directory Listing Script through 4.0.5 contains a reflected cross-site scripting vulnerability in index.php where the dir parameter value is reflected without HTML encoding inside the HTML title element and inside anchor href attributes in the breadcrumb navigation. Attackers can...

5.4CVSS0.00187EPSS
Exploits0References3
CVE
CVE
added 2026/06/09 8:49 p.m.29 views

CVE-2026-25557

CVE-2026-25557 affects Evoluted PHP Directory Listing Script

5.4CVSS5.5AI score0.00187EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.15 views

Evoluted PHP Directory Listing Script 跨站脚本漏洞

Evoluted PHP Directory Listing Script is a PHP-based directory indexing and file browsing script developed by the British company Evoluted. Versions of Evoluted PHP Directory Listing Script 4.0.5 and earlier contained a cross-site scripting vulnerability. This vulnerability stemmed from the dir...

5.4CVSS5.2AI score0.00187EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:30 p.m.10 views

CVE-2023-40761

User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS7AI score0.00746EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2420

Malware in sbrugna...

4.3CVSS6.4AI score0.01221EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-42603

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00609EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.25 views

EUVD-2023-44209

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00442EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-45314

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00746EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-45303

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00974EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:15 a.m.8 views

CVE-2023-40750

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0...

6.1CVSS5.9AI score0.00974EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:9 a.m.8 views

CVE-2023-38830

An information leak in PHPJabbers Yacht Listing Script v1.0 allows attackers to export clients' credit card numbers from the Reservations module...

7.5CVSS6.5AI score0.00609EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:58 a.m.6 views

CVE-2023-3557

A vulnerability was found in GZ Scripts Property Listing Script 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /preview.php. The manipulation of the argument page/layout/sortby leads to cross site scripting. The attack may be initiated remotely. The...

6.1CVSS6.2AI score0.00442EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:0 a.m.16 views

CVE-2023-3556

A vulnerability was found in GZ Scripts Car Listing Script PHP 1.8. It has been declared as problematic. This vulnerability affects unknown code of the file /preview.php. The manipulation of the argument page/sortby leads to cross site scripting. The attack can be initiated remotely. VDB-233350 i...

6.1CVSS6.4AI score0.00442EPSS
Exploits0References1
NVD
NVD
added 2023/08/28 1:15 p.m.18 views

CVE-2023-40761

User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS9.4AI score0.00746EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/08/28 1:15 p.m.7 views

CVE-2023-40761

User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS7.3AI score0.00746EPSS
Exploits0References4
OSV
OSV
added 2023/08/28 1:15 p.m.5 views

CVE-2023-40761

User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS5.7AI score0.00746EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/08/28 1:15 p.m.5 views

CVE-2023-40750

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0...

6.1CVSS6.4AI score0.00974EPSS
Exploits0References5
OSV
OSV
added 2023/08/28 1:15 p.m.3 views

CVE-2023-40750

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0...

6.1CVSS5.8AI score0.00974EPSS
Exploits0References2
Rows per page
Query Builder