CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6f13567eaeea713e45447a15fd6f75483e9d4f235554f3488ee9e4d430c2685 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2022/06/02 10:38 a.m.•3 views

MAL-2022-5059 Malicious code in olx-hubot (npm)

7AI score

Exploits0References1

Openbugbounty•added 2022/02/10 3:43 p.m.•10 views

olx-mart.com Cross Site Scripting vulnerability OBB-2367985

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

Hacker One•added 2019/07/10 9:16 p.m.•97 views

OLX: SQL Injection on https://www.olx.co.id

I found the SQL Injection on the website https://www.olx.co.id Affectected URL : https://www.olx.co.id/ajax/buybundle/getbundle/ POC: 1 In this below request i got SQL injection vulnerability in location parameter post method POST /ajax/buybundle/getbundle/ HTTP/1.1 Host: www.olx.co.id User-Agent...

0.4AI score

Exploits0

Hacker One•added 2019/07/02 11:10 a.m.•19 views

OLX: Reflected XSS on www.olx.co.id via ad_type parameter

I have identified a Reflected Cross Site Scripting XSS vulnerability on the www.olx.co.id website. Vulnerable URL: https://www.olx.co.id/iklan/sony-xz-ram-3gb-32gb-finger-mulus-preisure-naik-test-air-disini-IDA2UED.html?adtype=OR"/alert"XSS" Vulnerable Parameter: skeyword XSS Payload:...

5.9AI score

Exploits0

Hacker One•added 2019/06/26 11:28 p.m.•34 views

OLX: Reflected XSS on https://www.olx.co.id/iklan/*.html via "ad_type" parameter

I found Reflected XSS on https://www.olx.co.id/ - Vulnerability URL : https://www.olx.co.id/iklan/.html - Payloads: " Proof of Concept: 1. Try to find every URL like this URL structure https://www.olx.co.id/iklan/.html 2. And add the payloads in adtype parameter, example:...

0.3AI score

Exploits0

Hacker One•added 2019/01/10 8:59 p.m.•22 views

OLX: XSS - main page - search[user_id] parameter

Hi, how you doing? This is a pretty straight foward XSS in the main page. Affected parameter: searchuserid Direct Link: https://www.olx.pt/braga/?searchuserid=1zqjeu'":/1zqjeu;9, ;prompt9;&view=galleryWide Tested in updated firefox. Impact XSS allows a intruder to inject html and client side...

6.1AI score

Exploits0

Hacker One•added 2018/11/23 3:5 a.m.•67 views

OLX: blog.praca.olx.pl database credentials exposure

Hi, I found that the site blog.praca.olx.pl is exposing the content of wp-config.php file in plaintext due that a misconfiguration in the file-manager plugin. The information can be accessed here: http://blog.praca.olx.pl/wp-content/uploads/file-manager/log.txt The credentials are stored in the...

0.7AI score

Exploits0

Hacker One•added 2018/11/17 8:41 a.m.•157 views

OLX: SQL Injection https://www.olx.co.id

I found the SQL Injection security hole on the website https://www.olx.co.id, this is a critical finding. here is the POC from the findings that I got Affectect:https://www.olx.co.id/ajax/buybundle/getbundle/ POC: Request DATA POST /ajax/buybundle/getbundle/ HTTP/1.1 Host: www.olx.co.id User-Agen...

0.2AI score

Exploits0

Hacker One•added 2018/11/12 9:18 a.m.•89 views

OLX: Cross-site Scripting (XSS) - Reflected

Dear Security OLX team, I want to report the findings of the security gap on the olx.co.id website, the detailed findings are as follows: impact:https://www.olx.co.id/adminpanel/login/ Payload : ope8i"alert1grpo8 POC: paramter = userpassword POST /adminpanel/login/?ref0action=index&ref0method=ind...

0.1AI score

Exploits0

Hacker One•added 2018/10/27 11:47 a.m.•16 views

OLX: XSS Reflected at SEARCH >>

I have Found XSS payload avaliable at GET Request.. Live PoC URL:...

0.4AI score

Exploits0

OSV•added 2018/10/04 9:29 p.m.•0 views

CVE-2018-16326

PHP Scripts Mall Olx Clone 3.4.2 has XSS...

6.1CVSS5.8AI score0.0024EPSS

Exploits1References1

NVD•added 2018/10/04 9:29 p.m.•7 views

CVE-2018-16326

PHP Scripts Mall Olx Clone 3.4.2 has XSS...

6.1CVSS6.4AI score0.0024EPSS

Exploits1References1

Prion•added 2018/10/04 9:29 p.m.•11 views

Cross site scripting

PHP Scripts Mall Olx Clone 3.4.2 has XSS...

4.3CVSS6.4AI score0.0024EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/10/04 9:0 p.m.•15 views

CVE-2018-16326

PHP Scripts Mall Olx Clone 3.4.2 has XSS...

6.4AI score0.0024EPSS

Exploits1References1

CVE•added 2018/10/04 9:0 p.m.•38 views

CVE-2018-16326

CVE-2018-16326 affects PHP Scripts Mall Olx Clone 3.4.2. The connected documents indicate a Cross‑Site Scripting (XSS) vulnerability, described as a stored XSS vector via search by keyword (per linked references). Reported base metrics show a CVSS v2 base score of 4.3 (MEDIUM) with NETWORK access...

6.1CVSS6.4AI score0.0024EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2018/10/04 12:0 a.m.•2 views

PT-2018-13490 · Php Scripts Mall · Php Scripts Mall Olx Clone

Name of the Vulnerable Software and Affected Versions: PHP Scripts Mall Olx Clone version 3.4.2 Description: The issue is related to a Cross-Site Scripting XSS problem. XSS is a type of security vulnerability that allows an attacker to inject malicious scripts into a website, potentially leading ...

6.1CVSS5.9AI score0.0024EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by