CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7641 matches found

Exploit DB•added 2014/09/08 12:0 a.m.•22 views

Atmail Webmail 7.2 - Multiple Vulnerabilities

Title: Atmail Webmail =7.2 - Multiple XSS & FPD Date: 01.27.2014 Vendor: atmail.com Version: =7.2 Latest ATM, tested also on 7.1.1 Authors: Smash & Brag / smashatdevilteam.pl PoC: poczta.pl / demo.atmail.com 1. Cross Site Scripting a GET - viewmessageTabNumber Request:...

7AI score

Exploits0

Exploit DB•added 2014/09/08 12:0 a.m.•297 views

osCommerce 2.3.4 - Multiple Vulnerabilities

Title: osCommerce 2.3.4 - Multiple vulnerabilities Date: 10.07.14 Affected versions: = 2.3.4 latest atm Vendor: oscommerce.com Tested on: Apache 2.2.22 at Debian Contact: smash at devilteam.pl Cross Site Scripting 1. Reflected XSS - Send Email Vulnerable parameters - customersemailaddress &...

7AI score

Exploits0

Exploit DB•added 2014/09/08 12:0 a.m.•54 views

TP-Link TL-WR841N / TL-WR841ND - Multiple Vulnerabilities

Title: TP-LINK Model No. TL-WR841N / TL-WR841ND - Multiple Vulnerabilities Date: 30.06.14 Vendor: TP-LINK Affected versions: TL-WR841N / TL-WR841ND Tested on: Firmware Version - 3.13.27 Build 121101 Rel.38183n, Hardware Version - WR841N v8 00000000 at Linux Contact: smash at devilteam.pl 1 -...

7.4AI score

Exploits0

Exploit DB•added 2014/09/08 12:0 a.m.•24 views

phpMyFAQ 2.8.x - Multiple Vulnerabilities

Title: phpMyFAQ 2.8.X - Multiple Vulnerabilities Vendor: phpmyfaq.de Date: 04.09.19 Version: = 2.8.12 Latest ATM Tested on: Apache 2.2 / PHP 5.4 / Linux Contact: smash at devilteam.pl 1 Persistent XSS Administrator is able to view information about specific user session in 'Statistic' tab. Over...

7AI score

Exploits0

Exploit DB•added 2014/09/08 12:0 a.m.•29 views

vBulletin 5.1.x - Persistent Cross-Site Scripting

Title: vBulletin 5.1.X - Cross Site Scripting Date: 05.09.14 Version: = 5.1.2 Latest ATM Vendor: vbulletin.com Contact: smash at devilteam.pl 1 Agenda Latest vBulletin forum software suffers on persistent cross site scripting vulnerability, which most likely can be used against every user, such a...

7AI score

Exploits0

Exploit DB•added 2014/09/05 12:0 a.m.•20 views

MyBB User Social Networks Plugin 1.2 - Persistent Cross-Site Scripting

Exploit Title: User Social Networks MyBB Plugin 1.2 - Cross Site Scripting Google Dork: N/A Date: 05.09.2014 Exploit Author: Fikri Fadzil - [email protected] Vendor Homepage - N/A Software Link: http://mods.mybb.com/view/user-social-networks Version: 1.2 Tested on: PHP Description:...

7.4AI score

Exploits0

0day.today•added 2014/09/04 12:0 a.m.•33 views

phpMyFAQ 2.8.X - Multiple Vulnerabilities

Latest phpMyFAQ software suffers on multiple CSRF and XSS vulnerabilities, uh. Title: phpMyFAQ 2.8.X - Multiple Vulnerabilities Vendor: phpmyfaq.de Date: 04.09.19 Version: = 2.8.12 Latest ATM Tested on: Apache 2.2 / PHP 5.4 / Linux Contact: smash at devilteam.pl 1 Persistent XSS Administrator is...

6.6AI score

Exploits0

Packet Storm•added 2014/08/31 12:0 a.m.•42 views

Fat Free CRM Cross Site Scripting

Affected software: Fatt Free CRM - URL: http://www.fatfreecrm.com/ Discovered by: Ankit Bharathan Type of vulnerability: XSS Stored Fat Free CRM is an open source Ruby on Rails-based customer relationship management platform. Out of the box it features group collaboration, campaign and lead...

7.4AI score

Exploits0

securityvulns•added 2014/08/26 12:0 a.m.•140 views

Barracuda Networks Web Security Flex v4.1 - Persistent Vulnerabilities (BNSEC-699)

Document Title: =============== Barracuda Networks Web Security Flex v4.1 - Persistent Vulnerabilities BNSEC-699 References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=750 BARRACUDA NETWORK SECURITY ID: BNSEC-699 Release Date: ============= 2014-08-22...

0.4AI score

Exploits0

Packet Storm•added 2014/08/25 12:0 a.m.•34 views

Barracuda Networks Web Security Flex Appliance 4.x XSS

Document Title: =============== Barracuda Networks Web Security Flex Appliance Application v4.x - Filter Bypass & Persistent Vulnerabilities BNSEC 707 References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=749 Barracuda Networks Security ID BNSEC: 707 Video:...

0.3AI score

Exploits0

exploitpack•added 2014/08/25 12:0 a.m.•15 views

PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities

PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities Exploit Title: Multiple Persistent Cross Site Scripting Vulnerabilities in PHP Stock Management System 1.02 Date: 25 Aug 2014 Exploit Author: Ragha Deepthi K R Vendor Homepage: http://www.posnic.com/...

7AI score

Exploits0

Exploit DB•added 2014/08/25 12:0 a.m.•23 views

PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities

Exploit Title: Multiple Persistent Cross Site Scripting Vulnerabilities in PHP Stock Management System 1.02 Date: 25 Aug 2014 Exploit Author: Ragha Deepthi K R Vendor Homepage: http://www.posnic.com/ Software Link: http://sourceforge.net/projects/stockmanagement/ Version: 1.02 Tested on:...

7.4AI score

Exploits0

Packet Storm•added 2014/08/22 12:0 a.m.•39 views

Fatt Free CRM Cross Site Scripting

Hello Guys this is Sam , CEO and Chief Security Architect Provensec LLC . Please take note of the following submission. Affected software: Fatt Free CRM - URL: http://www.fatfreecrm.com/ Discovered by: Provensec Website: http://www.provensec.com Type of vulnerability: XSS Stored Fat Free CRM is a...

7.4AI score

Exploits0

Vulnerability Lab•added 2014/08/22 12:0 a.m.•35 views

Barracuda Web Security Flex 4.1 - Persistent Vulnerabilities

Document Title: =============== Barracuda Web Security Flex 4.1 - Persistent Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=750 BARRACUDA NETWORK SECURITY ID: BNSEC-699 Release Date: ============= 2014-08-22 Vulnerability Laboratory ID...

7.1AI score

Exploits0

seebug.org•added 2014/08/20 12:0 a.m.•17 views

Feng Office - Stored XSS

No description provided by source. Affected software: Feng Office - URL: http://www.fengoffice.com/web/demo.php Discovered by: Provensec Website: http://www.provensec.com Type of vulnerability: XSS Stored Feng Office is a Collaboration tool that includes a CRM, Communication, Document Management,...

7.1AI score

Exploits0

Vulnerability Lab•added 2014/08/20 12:0 a.m.•16 views

Barracuda Networks WSF - Filter Bypass & Persistent Bug

Document Title: =============== Barracuda Networks WSF - Filter Bypass & Persistent Bug References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1205 View: http://www.youtube.com/watch?v=1D9PS4bW8VM Advisory: http://www.vulnerability-lab.com/getcontent.php?id=749 Release Date:...

0.2AI score

Exploits0

Vulnerability Lab•added 2014/08/20 12:0 a.m.•16 views

Barracuda Networks WSF - Filter Bypass & Persistent Bug

7.1AI score

Exploits0

exploitpack•added 2014/08/14 12:0 a.m.•19 views

WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery (Admin Persistent) Cross-Site Scripting

WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery Admin Persistent Cross-Site Scripting disqus csrf reset -- -- alert1;' /...

0.4AI score

Exploits0

Exploit DB•added 2014/08/14 12:0 a.m.•44 views

WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery (Admin Persistent) / Cross-Site Scripting

disqus csrf reset -- -- alert1;' /...

7.4AI score

Exploits0

ThreatPost•added 2014/08/13 3:18 p.m.•18 views

Study: Uyghur Remain in Crosshairs of Targeted Attacks

It’s no secret that activists groups supporting the Uyghur and other ethnic minorities living either in exile or in oppressed nations have been in the crosshairs of targeted attacks for years. Regimes use phishing emails, other social engineering tactics, and drive-by downloads to infect computer...

7AI score

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by