CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-1145

Malware in sbrugna...

7.5CVSS6.3AI score0.04874EPSS

Exploits0References10

Veracode•added 2019/01/15 8:53 a.m.•20 views

Cross-site Scripting (XSS)

pki-tps is vulnerable to cross-site scripting. A lack of input validation and sanitization allows a remote attacker to inject arbitrary Javascript into a victim's browser via the PATHINFO variable to steal session tokens or perform unwanted actions on behalf of the user...

4.3CVSS5.9AI score0.00238EPSS

Exploits0References8Affected Software1

NVD•added 2012/10/09 3:55 p.m.•6 views

CVE-2012-5343

Cross-site scripting XSS vulnerability in admin/login.php in Limny 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO, related to the "PHPSELF" variable...

4.3CVSS5.7AI score0.09462EPSS

Exploits2References7

Cvelist•added 2006/03/10 11:0 a.m.•13 views

CVE-2006-1141

Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATHINFO environment variable...

7.7AI score0.04874EPSS

Exploits0References9

OSV•added 2006/02/15 11:6 a.m.•3 views

CVE-2006-0707

PyBlosxom before 1.3.2, when running on certain webservers, allows remote attackers to read arbitrary files via an HTTP request with multiple leading / slash characters, which is accessed using the PATHINFO variable...

7AI score

Exploits0References5

NVD•added 2006/02/15 11:6 a.m.•9 views

CVE-2006-0707

5CVSS6.8AI score0.00504EPSS

Exploits0References5

Cvelist•added 2006/02/15 11:0 a.m.•13 views

CVE-2006-0707

6.7AI score0.00504EPSS

Exploits0References5

Rows per page