CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

CNNVD•added 2026/02/02 12:0 a.m.•3 views

Talishar 跨站脚本漏洞

Talishar is an open-source game client developed by Talishar. Talishar has a cross-site scripting vulnerability, which stems from the lack of cleaning and escaping of the playerID parameter. This vulnerability may lead to storage-based cross-site scripting attacks...

5.3CVSS5.6AI score0.00015EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2010-4905

Malware in sbrugna...

7.5CVSS6.4AI score0.00156EPSS

Exploits1References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-43551

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00355EPSS

Exploits1References2

OSV•added 2023/08/15 10:15 p.m.•2 views

CVE-2023-39851

webchess v1.0 was discovered to contain a SQL injection vulnerability via the $playerID parameter at mainmenu.php. NOTE: this is disputed by a third party who indicates that the playerID is a session variable controlled by the server, and thus cannot be used for exploitation...

9.8CVSS5.8AI score0.00355EPSS

Exploits1References2

Prion•added 2020/01/28 8:15 p.m.•17 views

Cross site scripting

Cross-site Scripting XSS in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter...

4.3CVSS6.2AI score0.0049EPSS

Exploits1References1Affected Software1

WPVulnDB•added 2014/08/01 10:58 a.m.•18 views

podPress 8.8.10.13 - players/1pixelout/1pixelout_player.swf playerID Parameter XSS

The podpress WordPress plugin was affected by a players/1pixelout/1pixeloutplayer.swf playerID Parameter XSS security vulnerability...

4.3CVSS1.9AI score0.0049EPSS

Exploits1References1Affected Software1

Cvelist•added 2013/02/07 2:0 a.m.•19 views

CVE-2013-1464

Cross-site scripting XSS vulnerability in assets/player.swf in the Audio Player plugin before 2.0.4.6 for Wordpress allows remote attackers to inject arbitrary web script or HTML via the playerID parameter...

7.8AI score0.0352EPSS

Exploits1References6

OpenVAS•added 2011/11/09 12:0 a.m.•24 views

Joomla 'Teams' Component SQL Injection Vulnerability

This host is running Joomla with Teams component and is prone to SQL injection vulnerability. OpenVAS Vulnerability Test $Id: gbjoomlateamssqlinjvuln.nasl 7006 2017-08-25 11:51:20Z teissa $ Joomla 'Teams' Component SQL Injection Vulnerability Authors: Madhuri D Copyright: Copyright c 2011 Greenbo...

7.5CVSS0.1AI score0.00156EPSS

Exploits1References3

Prion•added 2011/10/09 10:55 a.m.•9 views

Sql injection

SQL injection vulnerability in the Teams comteams component 110281008091711 for Joomla! allows remote attackers to execute arbitrary SQL commands via the PlayerID parameter in a player save action to index.php...

7.5CVSS9AI score0.00156EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by