CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

18 matches found

securityvulns•added 2010/09/17 12:0 a.m.•60 views

[FLOCK-SA-2010-02] Flock Browser: A malicious RSS feed can bypass cross origin protection (XSS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 FLOCK-SA-2010-02 http://flock.com/security/ Title: A malicious RSS feed can bypass cross origin protection XSS Impact: High Announced on: 2010-09-09 Affected Products: Flock 3 versions prior to 3.0.0.4114 CVEs cve.mitre.org: CVE-2010-3262 Details: A...

4.3CVSS1.5AI score0.00285EPSS

Packet Storm•added 2010/08/30 12:0 a.m.•18 views

Safari For Windows SGV Denial Of Service

Safari for windows Invalid SGV text style Webkit.dll DoS Vendor URL:www.apple.com Advisore:http://lostmon.blogspot.com/2010/08/safari-for-windows-invalid-sgv-text.html Vendor notify :Yes exploit available :YES Safari browser for windows is prone vulnerable to a Denial of service condition , this...

xssed•added 2009/02/28 12:0 a.m.•12 views

Unfixed XSS vulnerability at www.my-forum.org

Security researcher Lostmon, has submitted on 28/02/2009 a cross-site-scripting XSS vulnerability affecting www.my-forum.org, which at the time of submission ranked 63154 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2011. It is current...

Exploits0References1

Exploit DB•added 2006/12/27 12:0 a.m.•24 views

PHP iCalendar 1.1/2.x - 'preferences.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21792/info PHP icalendar is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an...

Packet Storm•added 2005/11/05 12:0 a.m.•294 views

spymacXSS.txt

Spymac Web OS v4 blogs and notes multiple variable XSS Vendor url: http://www.spymac.com & http://arnieshwartz.spymac.com/thespymacwebos.htm Advisore: http://lostmon.blogspot.com/2005/11/ spymac-web-os-v4-blogs-and-notes.html Vendor notify :yes exploit available: yes Spymac is powered by an...

FreeBSD•added 2005/10/26 12:0 a.m.•12 views

flyspray -- cross-site scripting vulnerabilities

A Secunia Advisory reports: Lostmon has reported some vulnerabilities in Flyspray, which can be exploited by malicious people to conduct cross-site scripting attacks. Some input isn't properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script...

Exploits0References2

Packet Storm•added 2005/08/07 12:0 a.m.•22 views

codethatFlaws.txt

CodeThat ShoppingCart Critical information disclosure XSS and SQL injection vendor Url: http://www.codethat.com/shoppingcart/ advisore:http://lostmon.blogspot.com/2005/05/ codethat-shoppingcart-critical.html vendor notifY: yes exploit available: yes Discovered By Lostmon And icaro exploit code by...

securityvulns•added 2005/08/06 12:0 a.m.•20 views

[SA16338] Jax LinkLists Cross-Site Scripting and Information Disclosure

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

securityvulns•added 2005/07/30 12:0 a.m.•27 views

[SA16252] @Mail Multiple Cross-Site Scripting Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

securityvulns•added 2005/07/28 12:0 a.m.•37 views

[SA16224] BMForum Plus! Cross-Site Scripting Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

securityvulns•added 2005/06/17 12:0 a.m.•41 views

[SA15705] ATutor Cross-Site Scripting Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

securityvulns•added 2005/05/20 12:0 a.m.•29 views

[SA15325] TOPo Multiple Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

securityvulns•added 2005/05/10 12:0 a.m.•28 views

[SA15251] CodeThatShoppingCart Multiple Vulnerabilities

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: CodeThatShoppingCart Multiple Vulnerabilities SECUNIA...

securityvulns•added 2005/05/03 12:0 a.m.•25 views

[SA15181] ViArt Shop Enterprise Cross-Site Scripting and Script Insertion

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: ViArt Shop Enterprise Cross-Site Scripting and Script...

securityvulns•added 2005/04/21 12:0 a.m.•27 views

[NT] OneWorldStore Cross Site Scripting and SQL Injection Vulnerabilities

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

0day.today•added 2005/04/13 12:0 a.m.•20 views

DeluxeFtp 6.x Local Password Disclosure Exploit

Exploit for unknown platform in category local exploits =============================================== DeluxeFtp 6.x Local Password Disclosure Exploit =============================================== / DeluxeFtp 6.x Local Password Disclosure Exploit by Kozan Application: DeluxeFtp 6.x and probabl...

exploitpack•added 2005/04/13 12:0 a.m.•12 views

DeluxeFtp 6.x - Local Password Disclosure

DeluxeFtp 6.x - Local Password Disclosure / DeluxeFtp 6.x Local Password Disclosure Exploit by Kozan Application: DeluxeFtp 6.x and probably prior versions Vendor: www.deluxeftp.com Vulnerable Description: DeluxeFtp 6.x discloses passwords to local users. Bug Discovered by: Lostmon Exploit Coded...

securityvulns•added 2005/02/17 12:0 a.m.•28 views

[SA13937] MercuryBoard "f" Cross-Site Scripting Vulnerability

TITLE: MercuryBoard "f" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA13937 VERIFY ADVISORY: http://secunia.com/advisories/13937/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: MercuryBoard 1.x http://secunia.com/product/4560/ DESCRIPTION: Lostmon ha...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by