11 matches found
CVE-2025-11306
A vulnerability was found in qianfox FoxCMS up to 1.2. This affects an unknown part of the file /index.php/Search of the component Search Page. The manipulation of the argument keyword results in cross site scripting. The attack can be executed remotely. The exploit has been made public and could...
CVE-2025-11306 qianfox FoxCMS Search cross site scripting
A vulnerability was found in qianfox FoxCMS up to 1.2. This affects an unknown part of the file /index.php/Search of the component Search Page. The manipulation of the argument keyword results in cross site scripting. The attack can be executed remotely. The exploit has been made public and could...
CVE-2025-5013
A vulnerability, which was classified as problematic, was found in HkCms up to 2.3.2.240702. This affects an unknown part of the file /index.php/search/index.html of the component Search. The manipulation of the argument keyword leads to cross site scripting. It is possible to initiate the attack...
CVE-2023-49453
Reflected cross-site scripting XSS vulnerability in Racktables v0.22.0 and before, allows local attackers to execute arbitrary code and obtain sensitive information via the search component in index.php...
CVE-2023-2657
A vulnerability classified as problematic was found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this vulnerability is an unknown functionality of the file products.php. The manipulation of the argument search leads to cross site scripting. The attack can be launched...
PHP Search Engine 1.0 - SQL Injection
Exploit Title: PHP Search Engine 1.0 - SQL Injection Dork: N/A Date: 28.08.2017 Vendor Homepage: http://nelliwinne.net/ Software Link: https://www.codester.com/items/2975/php-search-engine-mysql-based-simple-site-search Demo: http://codester.nelliwinne.net/PHPSearchEngine/ Version: 1.0 Category:...
Easy Web Search 3 SQL Injection
Exploit Title: Easy Web Search - PHP Search Engine with Image Search and Crawling System Script v3.0 - SQL Injection Google Dork: N/A Date: 07.02.2017 Vendor Homepage: http://nelliwinne.net/ Software Buy:...
Easy Web Search 3 - 'id' SQL Injection
Exploit Title: Easy Web Search - PHP Search Engine with Image Search and Crawling System Script v3.0 - SQL Injection Google Dork: N/A Date: 07.02.2017 Vendor Homepage: http://nelliwinne.net/ Software Buy:...
sphider134-xss.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sphider Cross Site Scripting Vulnerability Original release date: 2008-04-29 Last revised: 2008-05-06 Latest version: http://users.own-hero.net/decoder/advisories/sphider134-xss.txt Source: Christian Holler Systems Affected: Sphider 1.3.4...
Php Search Remote Inclusion
Script : PhpSearch Bug : Remote File Inclusion Author : SekoMirza Company : http://www.hawkententerprises.org Download : http://www.hawkenterprises.org/dev/phpsearch.zip Dork : not yet Where : phpsearch/utils/classHTTPRetriever.php Bug : if isreadable$libcurlemuinc requireonce$libcurlemuinc;...
Interspire FastFind 2005 XSS vuln.
Interspire FastFind 2005 XSS vuln. Vuln. dicovered by : r0t Date: 1 dec. 2005 Orginal advisory:http://pridels.blogspot.com/2005/12/interspire-fastfind-2005-xss-vuln.html Vendor:http://www.interspire.com/fastfind/ affected version: 2005 and 2004 version. Product Description: Add powerful, flexible...