CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

21 matches found

seebug.org•added 2014/07/01 12:0 a.m.•17 views

PHP TopSites 2.0/2.2 HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6621/info An HTML injection vulnerability has been discovered in PHP TopSites. The issue occurs due to insufficient sanitization of user-supplied data. By injecting HTML code into the body tag of the description page, whe...

seebug.org•added 2014/07/01 12:0 a.m.•26 views

PHP TopSites 2.0/2.2 edit.php SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6625/info A vulnerability has been discovered in PHP TopSites. Due to insufficient sanitization of user-supplied URI parameters it is possible for an attacker to embed SQL commands into certain page requests. This may...

seebug.org•added 2014/07/01 12:0 a.m.•9 views

PHP TopSites 2.0/2.2 help.php Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6622/info A vulnerability has been discovered in PHP TopSites. Due to invalid sanitization of user-supplied input by the 'help.php' script, it may be possible for an attacker to steal another users cookie information or...

seebug.org•added 2014/07/01 12:0 a.m.•15 views

PHP TopSites FREE 1.022b Config.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20486/info PHP TopSites is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this issue to have malicious PHP code execute in the...

exploitpack•added 2010/12/13 12:0 a.m.•9 views

PHP TopSites 2.1 - rate.php Cross-Site Scripting SQL Injection

PHP TopSites 2.1 - rate.php Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/45389/info PHP TopSites is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issue...

Exploit DB•added 2010/12/13 12:0 a.m.•21 views

PHP TopSites 2.1 - '/rate.php' Cross-Site Scripting / SQL Injection

source: https://www.securityfocus.com/bid/45389/info PHP TopSites is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script code in t...

exploitpack•added 2006/10/12 12:0 a.m.•13 views

PHP TopSites FREE 1.022b - config.php Remote File Inclusion

PHP TopSites FREE 1.022b - config.php Remote File Inclusion source: https://www.securityfocus.com/bid/20486/info PHP TopSites is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this issue to have malicious PH...

OpenVAS•added 2006/03/26 12:0 a.m.•18 views

PHP TopSites Multiple Vulnerabilities - Active Check

PHP TopSites is prone to a vulnerability which allows an attacker to access the admin/setup interface without authentication. SPDX-FileCopyrightText: 2006 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Exploits0References2

Tenable Nessus•added 2005/08/24 12:0 a.m.•14 views

PHP TopSites setup.php Administration Authentication Bypass

The remote host is running PHP TopSites, a PHP/MySQL-based customizable TopList script. There is a vulnerability in this software which allows an attacker to access the admin/setup interface without authentication. %NASLMINLEVEL 70300 Josh Zlatin-Amishav GPLv2 Changes by Tenable: - Fixed script...

Exploits0References1

securityvulns•added 2005/07/22 12:0 a.m.•53 views

[Full-disclosure] PHPTopSites

------------------------------------------------------------ - EXPL-A-2005-012 exploitlabs.com Advisory 041 - ------------------------------------------------------------ - PHP TopSites - AFFECTED PRODUCTS ================= PHP TopSites FREE all versions PHP TopSites PRO all versions...

Tenable Nessus•added 2003/05/09 12:0 a.m.•20 views

PHP Topsites counter.php count_log_file Parameter Arbitrary File Overwrite

The remote host has the cgi 'counter.php' installed. This CGI contains a flaw that can be abused by an attacker to overwrite arbitrary files on the system with the privileges of the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref:...

securityvulns•added 2003/01/23 12:0 a.m.•19 views

More Critical Vulnerabilities In PHP Topsites

Version: All Script: edit.php vendor: itop10.net Type: Code Injection/Execution Vulnerability --------------------------------------------------------------------------- Another critical vulnerability has been found by the CyberArmy Security Research Team that effects php topsites. Basically, it ...

securityvulns•added 2003/01/21 12:0 a.m.•38 views

Multiple PHP Topsites Vulnerabities found

Multiple PHP Topsites Vulnerabities found PHP TopSites is a PHP/MySQL-based customizable TopList script. Main features include: Easy configuration config file; MySQL database backend; unlimited categories, Site rating on incoming votes; Special Rating from Webmaster; anti-cheating gateway; Random...

exploitpack•added 2003/01/15 12:0 a.m.•10 views

PHP TopSites 2.02.2 - help.php Cross-Site Scripting

PHP TopSites 2.02.2 - help.php Cross-Site Scripting source: https://www.securityfocus.com/bid/6622/info A vulnerability has been discovered in PHP TopSites. Due to invalid sanitization of user-supplied input by the 'help.php' script, it may be possible for an attacker to steal another users cooki...

Exploit DB•added 2003/01/15 12:0 a.m.•18 views

PHP TopSites 2.0/2.2 - 'edit.php' SQL Injection

source: https://www.securityfocus.com/bid/6625/info A vulnerability has been discovered in PHP TopSites. Due to insufficient sanitization of user-supplied URI parameters it is possible for an attacker to embed SQL commands into certain page requests. This may result in another users private...

Exploit DB•added 2003/01/15 12:0 a.m.•20 views

PHP TopSites 2.0/2.2 - 'help.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/6622/info A vulnerability has been discovered in PHP TopSites. Due to invalid sanitization of user-supplied input by the 'help.php' script, it may be possible for an attacker to steal another users cookie information or other sensitive data. This issue ca...

exploitpack•added 2003/01/15 12:0 a.m.•14 views

PHP TopSites 2.02.2 - edit.php SQL Injection

PHP TopSites 2.02.2 - edit.php SQL Injection source: https://www.securityfocus.com/bid/6625/info A vulnerability has been discovered in PHP TopSites. Due to insufficient sanitization of user-supplied URI parameters it is possible for an attacker to embed SQL commands into certain page requests...

exploitpack•added 2003/01/15 12:0 a.m.•10 views

PHP TopSites 2.02.2 - HTML Injection

PHP TopSites 2.02.2 - HTML Injection source: https://www.securityfocus.com/bid/6621/info An HTML injection vulnerability has been discovered in PHP TopSites. The issue occurs due to insufficient sanitization of user-supplied data. By injecting HTML code into the tag of the description page, when...

Exploit DB•added 2003/01/15 12:0 a.m.•23 views

PHP TopSites 2.0/2.2 - HTML Injection

source: https://www.securityfocus.com/bid/6621/info An HTML injection vulnerability has been discovered in PHP TopSites. The issue occurs due to insufficient sanitization of user-supplied data. By injecting HTML code into the tag of the description page, when submitting website, it may be possibl...

Exploit DB•added 2003/01/13 12:0 a.m.•24 views

PHP Topsites < 2.2 - Multiple Vulnerabilities

PHP Topsites Multiple Vulnerabilities Vendor: iTop 10 Product: PHP Topsites Version: tag of the description page, when submitting website, it may be possible to cause an administrator to edit or delete database entries. This issue will occur when an unsuspecting administrator loads the submitted...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by