Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Cvelist
Cvelistadded 2017/12/13 9:0 a.m.17 views

CVE-2017-17610

E-commerce MLM Software 1.0 has SQL Injection via the servicedetail.php pid parameter, eventdetail.php eventid parameter, or newsdetail.php newid parameter...

10AI score0.02512EPSS
Exploits1References2
0day.today
0day.todayadded 2017/09/19 12:0 a.m.28 views

iTech Gigs Script 1.20 - cat Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: iTech Gigs Script v1.20 - SQL Injection Exploit Author: 8bitsec Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/the-gigs-script/ Version: 1.20 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email:...

7.1AI score
Exploits0
Cvelist
Cvelistadded 2017/03/15 4:0 p.m.12 views

CVE-2017-6917

CSRF exists in BigTree CMS 4.2.16 with the value parameter to the admin/settings/update/ page. The Colophon can be changed...

5.6AI score0.00119EPSS
Exploits1References2
OSV
OSVadded 2017/02/06 3:59 p.m.10 views

CVE-2017-5875

XSS was discovered in dotCMS 3.7.0, with an authenticated attack against the /myAccount addressID parameter...

5.4CVSS5.9AI score
Exploits0References2
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.27 views

Geodesic Solutions Multiple Products index.php b Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A successful attack could...

7.1AI score
Exploits0
NVD
NVDadded 2007/03/28 12:19 a.m.11 views

CVE-2007-1723

Multiple cross-site scripting XSS vulnerabilities in the administration console in Secure Computing CipherTrust IronMail 6.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 network, 2 defRouterIp, 3 hostName, 4 domainName, 5 ipAddress, 6 defaultRouter, 7 dns1, or 8 dns2...

6.8CVSS5.9AI score0.03198EPSS
Exploits0References15
NVD
NVDadded 2007/01/16 11:28 p.m.15 views

CVE-2007-0258

Cross-site scripting XSS vulnerability in index.php in 1 Fastilo 2.0 and 2 Open Solution Quick.Cart 2.0 allows remote attackers to inject arbitrary web script or HTML via the p parameter. NOTE: some of these details are obtained from third party information...

6.8CVSS5.8AI score0.04458EPSS
Exploits1References10
Prion
Prionadded 2006/04/20 10:2 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Visale 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the keyval parameter in pbpgst.cgi, 2 the catsubno parameter in pblscg.cgi, and 3 the listno parameter in pblsmb.cgi...

2.6CVSS6.1AI score0.02176EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder