CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-2356

Malware in sbrugna...

4.3CVSS6.1AI score0.01087EPSS

Exploits1References10

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-1316

Malware in sbrugna...

4.3CVSS6.4AI score0.00335EPSS

Exploits0References4

OSV•added 2022/11/02 2:15 p.m.•1 views

ALPINE-CVE-2022-43995

Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer...

7.1CVSS7AI score0.00095EPSS

Exploits0References1

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Horde 3.1 'Passwd' Module Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35573/info The Horde 'Passwd' module is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score

Exploits0

NVD•added 2009/07/08 3:30 p.m.•10 views

CVE-2009-2360

Cross-site scripting XSS vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter...

4.3CVSS5.5AI score0.01087EPSS

Exploits1References8

Prion•added 2009/07/08 3:30 p.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter...

4.3CVSS6AI score0.01087EPSS

Exploits1References8Affected Software1

UbuntuCve•added 2009/07/08 3:30 p.m.•23 views

CVE-2009-2360

Cross-site scripting XSS vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter...

4.3CVSS5.9AI score0.01087EPSS

Exploits1References1

Cvelist•added 2009/07/08 3:0 p.m.•17 views

CVE-2009-2360

Cross-site scripting XSS vulnerability in passwd/main.php in the Passwd module before 3.1.1 for Horde allows remote attackers to inject arbitrary web script or HTML via the backend parameter...

5.5AI score0.01087EPSS

Exploits1References8

CVE•added 2009/07/08 3:0 p.m.•71 views

CVE-2009-2360

CVE-2009-2360 is an XSS vulnerability in Horde Passwd (passwd/main.php) where the backend parameter is not properly sanitized in Horde before version 3.1.1. The flaw could allow remote attackers to inject web script/HTML. Documents indicate this issue is part of a set of Horde vulnerabilities (GL...

4.3CVSS5.6AI score0.01087EPSS

Exploits1References8Affected Software1

exploitpack•added 2009/06/05 12:0 a.m.•13 views

Horde 3.1 - Passwd Module Cross-Site Scripting

Horde 3.1 - Passwd Module Cross-Site Scripting source: https://www.securityfocus.com/bid/35573/info The Horde 'Passwd' module is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

6.8AI score

Exploits0

NVD•added 2005/05/02 4:0 a.m.•10 views

CVE-2005-1313

Cross-site scripting XSS vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title...

4.3CVSS5.7AI score0.00335EPSS

Exploits0References3