Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

ATTACKERKB
ATTACKERKBadded 2007/03/02 9:18 p.m.2 views

CVE-2007-1177

WebAPP before 0.9.9.5 does not properly filter certain characters in contexts related to 1 the query string, 2 Profiles, 3 the Forum Post icon field, 4 the Edit Profile, and 5 the Gallery, which has unknown impact and remote attack vectors, possibly related to cross-site scripting XSS...

5.8CVSS5.2AI score0.00637EPSS
Exploits0References9
NVD
NVDadded 2006/05/20 3:2 a.m.9 views

CVE-2006-2498

Invision Power Board IPB before 2.1.6 allows remote attackers to execute arbitrary PHP script via attack vectors involving 1 the posticon variable in classes/post/classpost.php and 2 the df value in actionpublic/moderate.php...

6.4CVSS7.4AI score0.01059EPSS
Exploits0References9
securityvulns
securityvulnsadded 2003/07/16 12:0 a.m.16 views

Splatt Forum html injection code in post icon

Any user can inject html code when create a new post. The bug are in the post icon: img src="icon.gif" etc. If you create a personalized form with this code: icon.gif"scriptalert'bug';scriptany tag=" the final code of the post icon is: img src="icon.gif"scriptalert'bug';scriptany tag="" etc. The...

7.2AI score
Exploits0
Rows per page
Query Builder