CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7637 matches found

Exploit DB•added 2013/12/18 12:0 a.m.•45 views

Jenkins 1.523 - Persistent HTML Code

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS7AI score0.05406EPSS

Exploits5

exploitpack•added 2013/12/18 12:0 a.m.•36 views

Jenkins 1.523 - Persistent HTML Code

Jenkins 1.523 - Persistent HTML Code 01. Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Informatio...

4.3CVSS9.6AI score0.05406EPSS

Exploits5

RedHat Linux•added 2013/12/17 6:28 p.m.•1 views

cumin: non-persistent XSS possible due to not escaping set limit form input

Cross-site scripting XSS vulnerability in the web interface for cumin in Red Hat Enterprise MRG Grid 2.4 allows remote attackers to inject arbitrary web script or HTML via the "Max allowance" field in the "Set limit" form...

4.3CVSS5.9AI score0.01795EPSS

Exploits0References4

The Hacker News•added 2013/12/17 4:31 a.m.•8 views

Russian hackers stole Personal details of 54 million Turkish Citizens

The Publicized Hacks, Cyber attacks and Data breaches continue to increase, and the majority of attacks are from outsiders. Recently, Some unknown Russian hackers have reportedly stolen Personal details of nearly 54 million Turkish citizens, about 70% of the whole Turkish population. According to...

6.5AI score

Exploits0

exploitpack•added 2013/12/17 12:0 a.m.•45 views

Ditto Forensic FieldStation 2013Oct15a - Multiple Vulnerabilities

Ditto Forensic FieldStation 2013Oct15a - Multiple Vulnerabilities Title: Ditto Forensic FieldStation, multiple vulnerabilities Versions affected: = 2013Oct15a all Vendor: CRU Wiebetech Discovered by: Martin Wundram Email: [email protected] Date found: 2013-04-22 Date published: 2013-12-12...

10CVSS1.1AI score0.12607EPSS

Exploits8

exploitpack•added 2013/12/17 12:0 a.m.•20 views

Ability Mail Server 2013 3.1.1 - Web UI Persistent Cross-Site Scripting

Ability Mail Server 2013 3.1.1 - Web UI Persistent Cross-Site Scripting !/usr/bin/env python ''' Exploit Title: Ability Mail Server 2013 Stored XSS Date: 12/20/2013 Exploit Author: David Um Vendor Homepage: http://www.code-crafters.com/ Software Link: http://download.code-crafters.com/ams.exe...

4.3CVSS6.2AI score0.01441EPSS

Exploits7

Exploit DB•added 2013/12/17 12:0 a.m.•46 views

Ditto Forensic FieldStation 2013Oct15a - Multiple Vulnerabilities

Title: Ditto Forensic FieldStation, multiple vulnerabilities Versions affected: = 2013Oct15a all Vendor: CRU Wiebetech Discovered by: Martin Wundram Email: [email protected] Date found: 2013-04-22 Date published: 2013-12-12 Status: partially patched 0 ======== Introduction / Background / Impac...

10CVSS6.4AI score0.12607EPSS

Exploits8

Exploit DB•added 2013/12/17 12:0 a.m.•22 views

Ability Mail Server 2013 3.1.1 - Web UI Persistent Cross-Site Scripting

!/usr/bin/env python ''' Exploit Title: Ability Mail Server 2013 Stored XSS Date: 12/20/2013 Exploit Author: David Um Vendor Homepage: http://www.code-crafters.com/ Software Link: http://download.code-crafters.com/ams.exe Version: 3.1.1 Tested on: Windows Server 2003 SP2 CVE : CVE-2013-6162...

4.3CVSS7AI score0.01441EPSS

Exploits7

Exploit DB•added 2013/12/16 12:0 a.m.•40 views

iScripts MultiCart 2.4 - Persistent Cross-Site Scripting / Cross-Site Request Forgery / Cross-Site Scripting / Cross-Site Request Forgery / Mass Accounts Takeover

Exploit Title : iScripts MultiCart same product id for which you submited the review. Cross-site request forgery input type=hidden size=30 maxl...

7.4AI score

Exploits0

exploitpack•added 2013/12/16 12:0 a.m.•16 views

Wallpaper Script 3.5.0082 - Persistent Cross-Site Scripting

Wallpaper Script 3.5.0082 - Persistent Cross-Site Scripting Exploit Title : Wallpaper Script Stored XSS Vulnerability D0rk Google : Author : nullp0int3r [email protected] Version : 3.5.0082 Date : 2013-12-14 Vendor Homepage: http://www.wallpaperscript.com/ Test on : Windows Exploitation: 1...

6.8AI score

Exploits0

exploitpack•added 2013/12/16 12:0 a.m.•19 views

iScripts MultiCart 2.4 - Persistent Cross-Site Scripting Cross-Site Request Forgery Cross-Site Scripting Cross-Site Request Forgery Mass Accounts Takeover

iScripts MultiCart 2.4 - Persistent Cross-Site Scripting Cross-Site Request Forgery Cross-Site Scripting Cross-Site Request Forgery Mass Accounts Takeover Exploit Title : iScripts MultiCart same product id for which you submited the review. Cross-site request forgery body...

0.5AI score

Exploits0

exploitpack•added 2013/12/16 12:0 a.m.•37 views

Gitlab 6.0 - Persistent Cross-Site Scripting

Gitlab 6.0 - Persistent Cross-Site Scripting Exploit-DB note: Tested commit 10b0b8f1797e6c09b4c063c04a4864ecd31d34f4 Exploit Title: gitlab persistent xss exploit Date: 12/16/2013 Exploit Author: hellok Vendor Homepage: gitlab.org !/bin/sh author hellok for file format ext pwn for gitlab 12/16/201...

6.8AI score

Exploits0

Packet Storm•added 2013/12/14 12:0 a.m.•31 views

iScripts MultiCart 2.4 Cross Site Request Forgery / Cross Site Scripting

Exploit Title : iScripts MultiCart same product id for which you submited the review. Cross-site request forgery input type=hidden size=30 maxlengt...

0.2AI score

Exploits0

Packet Storm•added 2013/12/13 12:0 a.m.•44 views

Microsoft Yammer Cross Site Scripting

Document Title: =============== Microsoft Yammer - Persistent Profile Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=978 MSRC ID: 14808 Release Date: ============= 2013-12-12 Vulnerability Laboratory ID VL-ID:...

7.4AI score

Exploits0

Vulnerability Lab•added 2013/12/12 12:0 a.m.•57 views

Microsoft Office&Cloud - Persistent Web Vulnerabilities

Document Title: =============== Microsoft Office&Cloud - Persistent Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=806 Microsoft Security Response Center MSRC ID: 14090 Microsoft Security Response Center MSRC Manager: Brandon Release...

7.1AI score

Exploits0

Vulnerability Lab•added 2013/12/12 12:0 a.m.•13 views

Microsoft Office&Cloud - Persistent Web Vulnerabilities

0.1AI score

Exploits0

Vulnerability Lab•added 2013/12/11 12:0 a.m.•37 views

Microsoft Yammer - Persistent Profile Vulnerabilities

7.1AI score

Exploits0

exploitpack•added 2013/12/11 12:0 a.m.•14 views

eFront 3.6.14 (build 18012) - Multiple Persistent Cross-Site Scripting Vulnerabilities

eFront 3.6.14 build 18012 - Multiple Persistent Cross-Site Scripting Vulnerabilities Exploit-DB Note: Screenshot provided by exploit author. Exploit Title: eFront v3.6.14 build 18012 -Stored XSS in multiple Parameters Author: sajith version: eFront v3.6.14- build 18012 Vendor Homepage:...

7AI score

Exploits0

Exploit DB•added 2013/12/11 12:0 a.m.•26 views

eFront 3.6.14 (build 18012) - Multiple Persistent Cross-Site Scripting Vulnerabilities

Exploit-DB Note: Screenshot provided by exploit author. Exploit Title: eFront v3.6.14 build 18012 -Stored XSS in multiple Parameters Author: sajith version: eFront v3.6.14- build 18012 Vendor Homepage: http://www.efrontlearning.net/ vulnerable app link:http://www.efrontlearning.net/download POC b...

7.4AI score

Exploits0

Vulnerability Lab•added 2013/12/11 12:0 a.m.•20 views

Microsoft Yammer - Persistent Profile Vulnerabilities

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by