CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Open Bug Bounty ID: OBB-609320 Description| Value ---|--- Affected Website:| jtnutrition.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| PHPcounter 1.2.6 Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0

Openbugbounty•added 2017/12/31 9:29 a.m.•14 views

tathongtrainingcentre.com XSS vulnerability

Open Bug Bounty ID: OBB-471089 Description| Value ---|--- Affected Website:| tathongtrainingcentre.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.2AI score

Exploits0

Openbugbounty•added 2017/12/08 1:31 p.m.•10 views

tathongtrainingcentre.com XSS vulnerability

Open Bug Bounty ID: OBB-450368 Description| Value ---|--- Affected Website:| tathongtrainingcentre.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Openbugbounty•added 2017/11/03 1:18 p.m.•12 views

andeltilsalg.hojgaard.org XSS vulnerability

Open Bug Bounty ID: OBB-390777 Description| Value ---|--- Affected Website:| andeltilsalg.hojgaard.org Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventi...

6.3AI score

Exploits0

Openbugbounty•added 2017/11/03 1:12 p.m.•10 views

portersvilleparadise.com XSS vulnerability

Open Bug Bounty ID: OBB-390747 Description| Value ---|--- Affected Website:| portersvilleparadise.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

PHPcounter <= 1.3.2 (index.php name) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q ?php // PHPcounter = 1.3.2 Remote SQL Injection Exploit // Discovered By: StAkeR - StAkeRathotmaildotit // Discovered On: 28/09/2008 // Download: http://sourceforge.net/projects/phpcounter/ errorreporting0; $host = $argv1 or banner; $path = $arg...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•9 views

PHPcounter <= 1.3.2 (defs.php l) Local File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl PHPcounter = 1.3.2 Local File Inclusion Vulnerability Script: A multi-account real time web-site...

7.1AI score

Exploits0

NVD•added 2009/01/28 3:30 p.m.•7 views

CVE-2008-5989

Directory traversal vulnerability in defs.php in PHPcounter 1.3.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the l parameter...

6.8CVSS7.1AI score0.04537EPSS

Exploits1References4

Prion•added 2009/01/28 3:30 p.m.•9 views

Directory traversal

6.8CVSS7.6AI score0.04537EPSS

Exploits1References4Affected Software1

CVE•added 2009/01/28 3:0 p.m.•34 views

CVE-2008-5989

CVE-2008-5989 affects PHPcounter 1.3.2 and earlier. A directory traversal flaw in defs.php when magic_quotes_gpc is disabled allows remote attackers to use a .. in the l parameter to include and execute arbitrary local files. This is a remote, network-exposed issue with partial confidentiality/in...

6.8CVSS7.3AI score0.04537EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/01/28 3:0 p.m.•14 views

CVE-2008-5989

7.1AI score0.04537EPSS

Exploits1References4

NVD•added 2008/10/22 10:30 a.m.•7 views

CVE-2008-4675

SQL injection vulnerability in index.php in PHPcounter 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter...

7.5CVSS8.4AI score0.00414EPSS

Exploits1References4

Prion•added 2008/10/22 10:30 a.m.•11 views

Sql injection

SQL injection vulnerability in index.php in PHPcounter 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter...

7.5CVSS9.1AI score0.00414EPSS

Exploits1References4Affected Software1

Cvelist•added 2008/10/22 10:0 a.m.•10 views

CVE-2008-4675

SQL injection vulnerability in index.php in PHPcounter 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter...

8.4AI score0.00414EPSS

Exploits1References4

CVE•added 2008/10/22 10:0 a.m.•34 views

CVE-2008-4675

CVE-2008-4675: SQL injection in PHPcounter 1.3.2 and earlier via the name parameter in index.php. Root cause: unsanitized input leading to arbitrary SQL execution. Affected: PHPcounter 1.3.2 and older. Impact: remote attacker can run arbitrary SQL commands. Exploitation details are not provided i...

7.5CVSS8.4AI score0.00414EPSS

Exploits1References4Affected Software1