CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7657 matches found

exploitpack•added 2014/09/08 12:0 a.m.•16 views

vBulletin 5.1.x - Persistent Cross-Site Scripting

vBulletin 5.1.x - Persistent Cross-Site Scripting Title: vBulletin 5.1.X - Cross Site Scripting Date: 05.09.14 Version: = 5.1.2 Latest ATM Vendor: vbulletin.com Contact: smash at devilteam.pl 1 Agenda Latest vBulletin forum software suffers on persistent cross site scripting vulnerability, which...

6.8AI score

Exploits0

Exploit DB•added 2014/09/05 12:0 a.m.•21 views

MyBB User Social Networks Plugin 1.2 - Persistent Cross-Site Scripting

Exploit Title: User Social Networks MyBB Plugin 1.2 - Cross Site Scripting Google Dork: N/A Date: 05.09.2014 Exploit Author: Fikri Fadzil - [email protected] Vendor Homepage - N/A Software Link: http://mods.mybb.com/view/user-social-networks Version: 1.2 Tested on: PHP Description:...

7.4AI score

Exploits0

0day.today•added 2014/09/04 12:0 a.m.•34 views

phpMyFAQ 2.8.X - Multiple Vulnerabilities

Latest phpMyFAQ software suffers on multiple CSRF and XSS vulnerabilities, uh. Title: phpMyFAQ 2.8.X - Multiple Vulnerabilities Vendor: phpmyfaq.de Date: 04.09.19 Version: = 2.8.12 Latest ATM Tested on: Apache 2.2 / PHP 5.4 / Linux Contact: smash at devilteam.pl 1 Persistent XSS Administrator is...

6.6AI score

Exploits0

Packet Storm•added 2014/08/31 12:0 a.m.•43 views

Fat Free CRM Cross Site Scripting

Affected software: Fatt Free CRM - URL: http://www.fatfreecrm.com/ Discovered by: Ankit Bharathan Type of vulnerability: XSS Stored Fat Free CRM is an open source Ruby on Rails-based customer relationship management platform. Out of the box it features group collaboration, campaign and lead...

7.4AI score

Exploits0

securityvulns•added 2014/08/26 12:0 a.m.•141 views

Barracuda Networks Web Security Flex v4.1 - Persistent Vulnerabilities (BNSEC-699)

Document Title: =============== Barracuda Networks Web Security Flex v4.1 - Persistent Vulnerabilities BNSEC-699 References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=750 BARRACUDA NETWORK SECURITY ID: BNSEC-699 Release Date: ============= 2014-08-22...

0.4AI score

Exploits0

exploitpack•added 2014/08/25 12:0 a.m.•15 views

PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities

PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities Exploit Title: Multiple Persistent Cross Site Scripting Vulnerabilities in PHP Stock Management System 1.02 Date: 25 Aug 2014 Exploit Author: Ragha Deepthi K R Vendor Homepage: http://www.posnic.com/...

7AI score

Exploits0

Exploit DB•added 2014/08/25 12:0 a.m.•23 views

PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities

Exploit Title: Multiple Persistent Cross Site Scripting Vulnerabilities in PHP Stock Management System 1.02 Date: 25 Aug 2014 Exploit Author: Ragha Deepthi K R Vendor Homepage: http://www.posnic.com/ Software Link: http://sourceforge.net/projects/stockmanagement/ Version: 1.02 Tested on:...

7.4AI score

Exploits0

Packet Storm•added 2014/08/25 12:0 a.m.•35 views

Barracuda Networks Web Security Flex Appliance 4.x XSS

Document Title: =============== Barracuda Networks Web Security Flex Appliance Application v4.x - Filter Bypass & Persistent Vulnerabilities BNSEC 707 References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=749 Barracuda Networks Security ID BNSEC: 707 Video:...

0.3AI score

Exploits0

Packet Storm•added 2014/08/22 12:0 a.m.•40 views

Fatt Free CRM Cross Site Scripting

Hello Guys this is Sam , CEO and Chief Security Architect Provensec LLC . Please take note of the following submission. Affected software: Fatt Free CRM - URL: http://www.fatfreecrm.com/ Discovered by: Provensec Website: http://www.provensec.com Type of vulnerability: XSS Stored Fat Free CRM is a...

7.4AI score

Exploits0

Vulnerability Lab•added 2014/08/22 12:0 a.m.•37 views

Barracuda Web Security Flex 4.1 - Persistent Vulnerabilities

Document Title: =============== Barracuda Web Security Flex 4.1 - Persistent Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=750 BARRACUDA NETWORK SECURITY ID: BNSEC-699 Release Date: ============= 2014-08-22 Vulnerability Laboratory ID...

7.1AI score

Exploits0

Vulnerability Lab•added 2014/08/20 12:0 a.m.•16 views

Barracuda Networks WSF - Filter Bypass & Persistent Bug

Document Title: =============== Barracuda Networks WSF - Filter Bypass & Persistent Bug References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1205 View: http://www.youtube.com/watch?v=1D9PS4bW8VM Advisory: http://www.vulnerability-lab.com/getcontent.php?id=749 Release Date:...

7.1AI score

Exploits0

Vulnerability Lab•added 2014/08/20 12:0 a.m.•16 views

Barracuda Networks WSF - Filter Bypass & Persistent Bug

0.2AI score

Exploits0

seebug.org•added 2014/08/20 12:0 a.m.•17 views

Feng Office - Stored XSS

No description provided by source. Affected software: Feng Office - URL: http://www.fengoffice.com/web/demo.php Discovered by: Provensec Website: http://www.provensec.com Type of vulnerability: XSS Stored Feng Office is a Collaboration tool that includes a CRM, Communication, Document Management,...

7.1AI score

Exploits0

exploitpack•added 2014/08/14 12:0 a.m.•19 views

WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery (Admin Persistent) Cross-Site Scripting

WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery Admin Persistent Cross-Site Scripting disqus csrf reset -- -- alert1;' /...

0.4AI score

Exploits0

Exploit DB•added 2014/08/14 12:0 a.m.•45 views

WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery (Admin Persistent) / Cross-Site Scripting

disqus csrf reset -- -- alert1;' /...

7.4AI score

Exploits0

ThreatPost•added 2014/08/13 3:18 p.m.•18 views

Study: Uyghur Remain in Crosshairs of Targeted Attacks

It’s no secret that activists groups supporting the Uyghur and other ethnic minorities living either in exile or in oppressed nations have been in the crosshairs of targeted attacks for years. Regimes use phishing emails, other social engineering tactics, and drive-by downloads to infect computer...

7AI score

Exploits0References4

NVD•added 2014/08/11 10:55 p.m.•15 views

CVE-2014-2357

The GPT library in the Telegyr 8979 Master Protocol application in SUBNET SubSTATION Server 2 before SSNET 2.12 HF18808 allows remote attackers to cause a denial of service persistent service crash via a long RTU-to-Master message...

8.3CVSS6.5AI score0.0276EPSS

Exploits0References2

Prion•added 2014/08/11 10:55 p.m.•9 views

Code injection

7.1CVSS7.1AI score0.0276EPSS

Exploits0References1Affected Software1

Packet Storm•added 2014/08/10 12:0 a.m.•28 views

Espo CRM Cross Site Scripting

Affected software: http://www.espocrm.com/demo/ Discovered by: Ankit Bharathan Website: ankitbharathan.blogspot.com Type of vulnerability: Stored xss Description: A web application that allows you to see, enter and evaluate all your company relationships regardless of the type. People, companies,...

7.4AI score

Exploits0

ThreatPost•added 2014/08/06 3:9 p.m.•11 views

Mobile Broadband Modems Seen as Easy Targets for Attackers

LAS VEGAS–Mobile broadband modems can be a great alternative if you can’t find a WiFi network or don’t trust the ones you can find. But many of the models sold by the major manufacturers contain bugs and functionality that a remote attacker can exploit without much difficulty. Much of the market...

0.6AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by