Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

wpexploit
wpexploitadded 2023/01/06 12:0 a.m.92 views

Custom User Profile Fields for User Registration & Member Frontend Profiles with Paid Memberships Pro < 1.8.1 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. Exploit...

5.4CVSS0.3AI score0.00252EPSS
Exploits2
myhack58
myhack58added 2014/09/08 12:0 a.m.11 views

08cms home system injection vulnerability-vulnerability warning-the black bar safety net

Title: 08cms home system injection vulnerability Team: 0 8 Security Team Author: 0 8 Security Team Starters: 0 8 Security Team This loophole in the 5 month has been the audit came out, now the vulnerability is released. Register an account member profile-basic information view form to get your ow...

1.1AI score
Exploits0
0day.today
0day.todayadded 2013/02/09 12:0 a.m.848 views

phpVibe 3.1 Persistent XSS Vulnerability

This exploit allow attackers to inject script code in members list 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS,...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2012/06/06 12:0 a.m.68 views

MyBB 1.6.8 With AdvancedProfile 3.1 SQL Injection

-------------------- IN The NAme OF God -------------------- -====MyBB 1.6.8 Sql Injection Vulnerability====- Exploit Title: MyBB 1.6.8 Sql Injection Vulnerability Exploit Author: Mr.XpR Tested on: BackTrack Script Site : http://mybb.com MAil : No0PMatyahoodotcom -====Dork====-...

0.4AI score
Exploits0
exploitpack
exploitpackadded 2010/07/08 12:0 a.m.19 views

PG Social Networking - Arbitrary File Upload

PG Social Networking - Arbitrary File Upload ============================================================== PG Social Networking --Shell upload Vulnerabilty ============================================================== Name : PG Social Networking --Shell upload Vulnerabilty Date : july 9,2010...

0.6AI score
Exploits0
xssed
xssedadded 2007/10/13 12:0 a.m.16 views

Unfixed XSS vulnerability at www.meetgreatcouples.com

Security researcher BackDoor, has submitted on 13/10/2007 a cross-site-scripting XSS vulnerability affecting www.meetgreatcouples.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/11/2007. It is...

Exploits0References1
Prion
Prionadded 2007/06/26 11:30 p.m.15 views

Design/Logic Flaw

The editprofile3 function in cgi-bin/cgi-lib/user.pl in web-app.org WebAPP before 0.9.9.7 does not properly check the 1 themes.dat, 2 languages.dat, 3 profession.dat, 4 gen.dat, 5 marstat.dat, 6 states.dat, and 7 ages.dat files before saving profile settings of members, which has unknown impact a...

7.5CVSS7.3AI score0.00445EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder