CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

45 matches found

Positive Technologies•added 2024/04/11 12:0 a.m.•1 views

PT-2024-23654 · Unknown · Rageframe2

Name of the Vulnerable Software and Affected Versions: RageFrame2 version 2.6.43 Description: A Reflected Cross Site Scripting XSS issue allows remote attackers to execute arbitrary web scripts or HTML and obtain sensitive information via a crafted payload injected into the multiple parameter in...

5.4CVSS6.5AI score0.001EPSS

Exploits1References3

Tenable Nessus•added 2019/02/06 12:0 a.m.•457 views

ThinkPHP Multiple Parameter RCE

Binary data thinkphprce.nbin...

9.8CVSS7.3AI score0.9426EPSS

Exploits9References4

Zero Day Initiative•added 2016/01/25 12:0 a.m.•29 views

Oracle Application Testing Suite DownloadServlet Multiple Parameter Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to exfiltrate arbitrary files on vulnerable installations of Oracle Application Testing Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DownloadServlet. By providing repository, workspace, or...

7.8CVSS7.3AI score0.02771EPSS

Exploits0References1

WPVulnDB•added 2014/09/20 8:1 p.m.•15 views

ActiveHelper LiveHelp Server 3.1.0 - server/offline.php Multiple Parameter XSS

The activehelper-livehelp WordPress plugin was affected by a server/offline.php Multiple Parameter XSS security vulnerability...

4.3CVSS1.8AI score0.02772EPSS

Exploits1References2Affected Software1

WPVulnDB•added 2014/08/01 10:59 a.m.•13 views

GroupDocs Comparison <= 1.0.2 - Multiple Parameter XSS

The GroupDocs.Comparison for Cloud WordPress plugin was affected by a Multiple Parameter XSS security vulnerability...

1.9AI score

Exploits0References1Affected Software1

WPVulnDB•added 2014/08/01 10:59 a.m.•9 views

GroupDocs Viewer 1.4.1 - grpdocs-dialog.php Multiple Parameter XSS

The GroupDocs.Viewer for Cloud WordPress plugin was affected by a grpdocs-dialog.php Multiple Parameter XSS security vulnerability...

1.9AI score

Exploits0Affected Software1

WPVulnDB•added 2014/08/01 10:59 a.m.•10 views

Car Demon 1.0.1 - /wp-admin/post.php Multiple Parameter XSS

The Car Demon WordPress plugin was affected by a /wp-admin/post.php Multiple Parameter XSS security vulnerability...

2.3AI score

Exploits0Affected Software1

WPVulnDB•added 2014/08/01 10:59 a.m.•5 views

LBG Zoominoutslider - settings_form.php Multiple Parameter Stored XSS

The lbgzoominoutslider WordPress plugin was affected by a settingsform.php Multiple Parameter Stored XSS security vulnerability...

2.1AI score

Exploits0References2Affected Software1

WPVulnDB•added 2014/08/01 12:0 a.m.•18 views

LeagueManager <= 3.7 - wp-admin/admin.php Multiple Parameter XSS

The LeagueManager WordPress plugin was affected by a wp-admin/admin.php Multiple Parameter XSS security vulnerability...

4.3CVSS2.5AI score0.00153EPSS

Exploits1References3Affected Software1

seebug.org•added 2014/07/01 12:0 a.m.•15 views

CarLine Forum Russian Board 4.2 memory.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14045/info Forum Russian Board is prone to multiple input validation vulnerabilities. These issues can allow attackers to carry out SQL Injection, cross-site scripting, and HTML injection attacks. Forum Russian Board 4.2 ...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

CyberBuild 0 result.asp Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

iSupport 1.8 ticket_function.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/37380/info iDevSpot iSupport is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input An attacker may leverage these issues to execute arbitrary...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Jetbox CMS 2.1 - view/supplynews Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/23999/info Jetbox CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•14 views

PHP iCalendar 1.1/2.x search.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21792/info PHP icalendar is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script cod...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•15 views

Connect Daily 3.2.8/3.2.9 ViewYear.html Multiple Parameter XSS

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•24 views

Dojo Toolkit <= 1.4.1 doh\runner.html Multiple Parameter XSS

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•19 views

VWar 1.x war.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19327/info Vwar is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. These issues occur because the application fails to properly sanitize user-supplied input. A...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

OpManager 6/7 reports/ReportViewAction.do Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the brows...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•9 views

Absolute News Manager .NET 5.1 xlaabsolutenm.aspx Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/26692/info Absolute News Manager .NET is prone to multiple remote vulnerabilities, including multiple cross-site scripting, SQL-injection, and information-disclosure issues. Attackers can exploit these issues to steal...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Enthrallweb eHomes result.asp Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21193/info eHome is prone to multiple input-validation vulnerabilities, including cross-site scripting, and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploi...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by