CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-3981

Malware in sbrugna...

7.5CVSS6.4AI score0.01112EPSS

Exploits0References8

Cvelist•added 2018/12/06 9:0 p.m.•11 views

CVE-2018-19919

Pixelimity 1.0 has Persistent XSS via the admin/portfolio.php datatitle parameter, as demonstrated by a crafted onload attribute of an SVG element...

4.9AI score0.00235EPSS

Exploits1References1

CVE•added 2018/12/06 9:0 p.m.•36 views

CVE-2018-19919

Pixelimity 1.0 is affected by CVE-2018-19919: a persistent XSS flaw in the admin/portfolio.php data[title] parameter, demonstrated by a crafted onload attribute in an SVG element. This indicates that enabling arbitrary HTML/JS injection could occur through the title field when rendering the admin...

4.8CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

OSV•added 2018/12/06 8:29 p.m.•13 views

CVE-2018-19919

Pixelimity 1.0 has Persistent XSS via the admin/portfolio.php datatitle parameter, as demonstrated by a crafted onload attribute of an SVG element...

4.8CVSS5.8AI score

Exploits0References1

Prion•added 2018/12/06 8:29 p.m.•10 views

Design/Logic Flaw

Pixelimity 1.0 has Persistent XSS via the admin/portfolio.php datatitle parameter, as demonstrated by a crafted onload attribute of an SVG element...

3.5CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

Prion•added 2018/06/11 1:29 p.m.•10 views

Sql injection

portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter...

6.5CVSS7.5AI score0.00247EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/06/11 1:0 p.m.•15 views

CVE-2018-12110

portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter...

7.5AI score0.00247EPSS

Exploits1References1

Openbugbounty•added 2017/10/05 5:14 p.m.•9 views

moianimation.com XSS vulnerability

Vulnerable URL: http://www.moianimation.com/portfolio.php?ptype=list=portfolio=13'"58=eng Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5599179 VIP website status:| No Check...

6.3AI score

Exploits0

Packet Storm•added 2012/09/20 12:0 a.m.•17 views

cgCraft LLC SQL Injection

---------------------------------------------------------------- cgCraft llc SQL Injection Vulnerability ---------------------------------------------------------------- Exploit Title : cgCraft llc SQL Injection Vulnerability Author : Hack Center Security Team Discovered By : Net.W0lf Software Li...

0.5AI score

Exploits0

CVE•added 2006/04/27 11:0 p.m.•49 views

CVE-2006-2079

CVE-2006-2079 describes a cross-site scripting (XSS) vulnerability in Verosky Media Instant Photo Gallery, specifically in portfolio.php, potentially affecting versions before 1.0.2. The flaw is exploitable via the cat_id parameter, enabling remote attackers to inject arbitrary web script or HTML...

4.3CVSS5.8AI score0.00674EPSS

Exploits1References6Affected Software1

Cvelist•added 2005/12/04 10:0 p.m.•13 views

CVE-2005-3986

Multiple SQL injection vulnerabilities in Instant Photo Gallery 1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 catid parameter in portfolio.php and 2 cid parameter in content.php...

8.5AI score0.01112EPSS

Exploits0References7

CVE•added 2005/12/04 10:0 p.m.•47 views

CVE-2005-3986

This CVE (CVE-2005-3986) affects Instant Photo Gallery (version 1 and earlier). The vulnerability is SQL injection in two parameters: cat_id in portfolio.php and cid in content.php, allowing remote attackers to execute arbitrary SQL commands. The exploitation is described as remote and results in...

7.5CVSS8.9AI score0.01112EPSS

Exploits0References7Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by