CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1167 matches found

exploitpack•added 2012/03/30 12:0 a.m.•16 views

e107 1.0 - view SQL Injection

e107 1.0 - view SQL Injection source: https://www.securityfocus.com/bid/52821/info e107 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application...

Exploit DB•added 2012/03/16 12:0 a.m.•19 views

JPM Article Script 6 - 'page2' SQL Injection

source: https://www.securityfocus.com/bid/52528/info JPM Article Script 6 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or...

Exploit DB•added 2012/03/08 12:0 a.m.•18 views

LeKommerce - 'id' SQL Injection

source: https://www.securityfocus.com/bid/52347/info LeKommerce is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Exploit DB•added 2012/02/16 12:0 a.m.•25 views

CMS Faethon 1.3.4 - 'articles.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/52053/info CMS Faethon is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access o...

exploitpack•added 2012/01/30 12:0 a.m.•10 views

Joomla! Component com_firmy - Id SQL Injection

Joomla! Component comfirmy - Id SQL Injection source: https://www.securityfocus.com/bid/51727/info The 'comfirmy' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

Exploit DB•added 2012/01/26 12:0 a.m.•39 views

Joomla! Component com_motor - 'cid' SQL Injection

source: https://www.securityfocus.com/bid/51673/info The 'commotor' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploit DB•added 2012/01/23 12:0 a.m.•18 views

Joomla! Component com_xball - 'team_id' SQL Injection

source: https://www.securityfocus.com/bid/51618/info The 'comxball' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploit DB•added 2012/01/21 12:0 a.m.•25 views

Tribiq CMS - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/51614/info Tribiq CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

exploitpack•added 2012/01/19 12:0 a.m.•9 views

Vastal EzineShop - view_mags.php SQL Injection

Vastal EzineShop - viewmags.php SQL Injection source: https://www.securityfocus.com/bid/51571/info Vastal EzineShops is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attack...

Exploit DB•added 2012/01/19 12:0 a.m.•21 views

Vastal EzineShop - 'view_mags.php' SQL Injection

source: https://www.securityfocus.com/bid/51571/info Vastal EzineShops is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Exploit DB•added 2012/01/19 12:0 a.m.•16 views

PostNuke pnAddressbook Module - 'id' SQL Injection

source: https://www.securityfocus.com/bid/51566/info The pnAddressbook module for PostNuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploit DB•added 2012/01/18 12:0 a.m.•22 views

Freelance Zone - 'show_code.php' SQL Injection

source: https://www.securityfocus.com/bid/51533/info Freelance Zone is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modif...

Exploit DB•added 2012/01/09 12:0 a.m.•20 views

Clipbucket 2.6 - 'search_result.php?query' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

CVE•added 2011/12/27 2:0 a.m.•49 views

CVE-2011-4169

HP Managed Printing Administration before 2.6.4 is affected by CVE-2011-4169. The vulnerability arises in the img_id parameter handling within multiple HP MP A scripts (imglist/imgselect, imgmap/bgselect, imgmap/imgselect) where input can be manipulated to perform SQL injection and directory trav...

7.5CVSS6.7AI score0.02495EPSS

Exploits0References1Affected Software1

Cvelist•added 2011/12/27 2:0 a.m.•19 views

CVE-2011-4169

Unspecified vulnerability in HP Managed Printing Administration before 2.6.4 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...

6.6AI score0.02495EPSS

Exploits0References1

exploitpack•added 2011/12/20 12:0 a.m.•28 views

Cyberoam UTM 10 - tableid SQL Injection

Cyberoam UTM 10 - tableid SQL Injection source: https://www.securityfocus.com/bid/51143/info Cyberoam UTM is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Exploit DB•added 2011/12/18 12:0 a.m.•20 views

Video Community Portal - 'userID' SQL Injection

source: https://www.securityfocus.com/bid/51108/info Video Community Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access ...

exploitpack•added 2011/11/17 12:0 a.m.•31 views

webERP 4.3.8 - reportwriterReportMaker.php?reportid SQL Injection

webERP 4.3.8 - reportwriterReportMaker.php?reportid SQL Injection source: https://www.securityfocus.com/bid/50713/info webERP is prone to information-disclosure, SQL-injection, and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may...

Exploit DB•added 2011/11/17 12:0 a.m.•34 views

webERP 4.3.8 - '/reportwriter/ReportMaker.php?reportid' SQL Injection

source: https://www.securityfocus.com/bid/50713/info webERP is prone to information-disclosure, SQL-injection, and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may exploit the information-disclosure issue to gain access to sensiti...

exploitpack•added 2011/11/08 12:0 a.m.•25 views

PBCS Technology - articlenav.php SQL Injection

PBCS Technology - articlenav.php SQL Injection source: https://www.securityfocus.com/bid/50577/info PBCS Technology is prone to an SQL Injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacke...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by