Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

266 matches found

Packet Storm
Packet Stormadded 2008/01/28 12:0 a.m.30 views

eticket156-xss.txt

eTicket 'index.php' Cross Site Scripting Path Vulnerability Name: eTicket 'index.php' Cross Site Scripting Path Vulnerability Application: eTicket Versions Affected: 1.5.6-RC4 Severity: Medium Vendor: eTicket, http://sourceforge.net/projects/eticket Bug: XSS Path vulnerability Exploitation: Clien...

7.4AI score
Exploits0
OpenVAS
OpenVASadded 2008/01/17 12:0 a.m.21 views

Debian Security Advisory DSA 1056-1 (webcalendar)

The remote host is missing an update to webcalendar announced via advisory DSA 1056-1. David Maciejak noticed that webcalendar, a PHP-Based multi-user calendar, returns different error messages on login attempts for an invalid password and a non-existing user, allowing remote attackers to gain...

5CVSS6.5AI score0.00558EPSS
Exploits0
OpenVAS
OpenVASadded 2008/01/17 12:0 a.m.10 views

Debian: Security Advisory (DSA-1096-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.8AI score0.0103EPSS
Exploits0References3
OpenVAS
OpenVASadded 2008/01/17 12:0 a.m.15 views

Debian: Security Advisory (DSA-1267-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.02729EPSS
Exploits0References3
OpenVAS
OpenVASadded 2008/01/17 12:0 a.m.12 views

Debian: Security Advisory (DSA-1056-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.8AI score0.00558EPSS
Exploits0References3
OpenVAS
OpenVASadded 2008/01/17 12:0 a.m.10 views

Debian: Security Advisory (DSA-1279-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.2AI score0.01631EPSS
Exploits0References3
securityvulns
securityvulnsadded 2008/01/08 12:0 a.m.32 views

eTicket 1.5.5.2 Multiple Vulnerabilities

====================================================================== eTicket 1.5.5.2 Multiple Vulnerabilities ====================================================================== Author: L4teral l4teral 4t gmail com Impact: Cross Site Scripting Cross Site Request Forgery SQL Injection Status:...

Exploits0
Tenable Nessus
Tenable Nessusadded 2008/01/04 12:0 a.m.26 views

Site@School slideshow_full.php album_name Parameter SQL Injection

The remote host is running Site@School, an open source, PHP-based, content management system intended for primary schools. The version of this software installed on the remote host fails to sanitize user-supplied input to the 'albumname' parameter of the 'starnet/addons/slideshowfull.php' script...

6.8CVSS5.6AI score0.00462EPSS
Exploits0References1
seebug.org
seebug.orgadded 2007/12/29 12:0 a.m.15 views

XZeroScripts XZero Community Classifieds 本地文件包含漏洞

BUGTRAQ ID: 27041 CNCAN ID:CNCAN-2007122808 XZeroScripts XZero Community Classifieds是一款基于PHP的WEB应用程序。 XZeroScripts XZero Community Classifieds不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限查看系统文件内容。 问题是由于脚本对用户提交的WEB参数缺少过滤,提交包含多个\"../\"字符作为参数数据,可绕过WEB ROOT限制,以WEB权限查看系统文件内容。 XZeroScripts XZero Community...

6.9AI score
Exploits0
Packet Storm
Packet Stormadded 2007/08/29 12:0 a.m.29 views

vwar-rfi.txt

'/ -.- --------------------oOO------OOo-------------------- | VWar = v1.5.0 R15 mvcw.php Remote File Inclusion | | coded by DNX | ------------------------------------------------------- ! Discovered: DNX ! Vendor: http://www.vwar.de ! Detected: 26.02.2007 ! Reported: 27.02.2007 ! Remote: yes !...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2007/06/27 12:0 a.m.43 views

Power Phlogger Login.PHP SQL注入漏洞

Power Phlogger是一款基于PHP的WEB应用程序。 Power Phlogger不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击获得敏感信息。 问题是由于'Login.PHP'脚本对用户提交的WEB参数缺少过滤,提交恶意SQL查询作为参数数据,可导致应用程序处理时更改原来的SQL逻辑,攻击者可以获得敏感信息或者操作数据库。 PHPee Power Phlogger 2.2.5 目前没有解决方案提供: http://www.phpee.com/...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2007/05/08 12:0 a.m.106 views

[Full-disclosure] Advanced Guestbook version 2.4.2 Multiple XSS Attack Vulnerabilities

netVigilance Security Advisory 12 Advanced Guestbook version 2.4.2 Multiple XSS Attack Vulnerabilities Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , html tags...

4.3CVSS0.4AI score0.10031EPSS
Exploits1
securityvulns
securityvulnsadded 2007/05/08 12:0 a.m.84555 views

[Full-disclosure] Advanced Guestbook version 2.4.2 Directory Traversal Vulnerability

netVigilance Security Advisory 13 Advanced Guestbook version 2.4.2 Directory Traversal Vulnerability Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , html tags handlin...

5.1CVSS0.7AI score0.10254EPSS
Exploits2
Packet Storm
Packet Stormadded 2007/05/08 12:0 a.m.1570 views

ag-traverse.txt

netVigilance Security Advisory 13 Advanced Guestbook version 2.4.2 Directory Traversal Vulnerability Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , html tags handlin...

5.1CVSS6.7AI score0.10254EPSS
Exploits2
Packet Storm
Packet Stormadded 2007/05/08 12:0 a.m.29 views

ag-xss.txt

netVigilance Security Advisory 12 Advanced Guestbook version 2.4.2 Multiple XSS Attack Vulnerabilities Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , html tags...

4.3CVSS6.7AI score0.10031EPSS
Exploits1
securityvulns
securityvulnsadded 2007/05/08 12:0 a.m.1052 views

Advanced Guestbook version 2.4.2 Multiple Error Information Leak Vulnerabilities

netVigilance Security Advisory 11 Advanced Guestbook version 2.4.2 Multiple Error Information Leak Vulnerabilities Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , htm...

7.1CVSS6.4AI score0.0143EPSS
Exploits0
Packet Storm
Packet Stormadded 2007/05/03 12:0 a.m.17 views

imageview-lfi.txt

'/ -.- --------------------oOO------OOo------------------- | Imageview v5.3 fileview.php Local File Inclusion | | works only with magicquotesgpc = off | | coded by DNX | ------------------------------------------------------ ! Discovered: DNX ! Vendor: www.blackdot.be/?inc=projects/imageview !...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/04/30 12:0 a.m.35 views

Imageview v5.3 (fileview.php) Local File Inclusion

'/ -.- --------------------oOO------OOo------------------- | Imageview v5.3 fileview.php Local File Inclusion | | works only with magicquotesgpc = off | | coded by DNX | ------------------------------------------------------ ! Discovered: DNX ! Vendor: www.blackdot.be/?inc=projects/imageview !...

0.5AI score
Exploits0
OSV
OSVadded 2007/04/22 12:0 a.m.11 views

DSA-1279-1 webcalendar - missing input sanitising

Bulletin has no description...

6.8CVSS6.8AI score0.01631EPSS
Exploits0
securityvulns
securityvulnsadded 2007/04/10 12:0 a.m.151 views

PhpOpenChat <= 3.0.1 (poc.php) Multiple Remote File Include Vulnerabilities

-------------------------------------------------- PhpOpenChat = 3.0.1 poc.php Multiple Remote File Include Vulnerabilities -------------------------------------------------- Author : SekoMirza Date Found : Nisan 11 2007 Location : Fransa // ... Critical Lvl : Highly critical Impact : System acce...

0.8AI score
Exploits0
Rows per page
Query Builder