26 matches found
CVE-2026-33455
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
EUVD-2020-6326
Malware in sbrugna...
AGENCY Cross-Site Scripting Vulnerability
AGENCY is a free application open source by dstar2018. AGENCY 61 and earlier versions suffer from a cross-site scripting vulnerability that stems from the parameter QSType/QuickSearch in the file search.php can lead to cross-site scripting...
GHSA-4465-R2HG-V4RJ CiviCRM SQL injection vulnerability via Quick Search API
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the "second layer" of the API, related to contact.getquick...
CiviCRM SQL injection vulnerability via Quick Search API
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the "second layer" of the API, related to contact.getquick...
Atlassian Jira 8.0 < 8.9.1 XSS in Quick Search (JRASERVER-71205)
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is version 8.x prior to 8.9.1. It is, therefore, affected by a cross-site scripting XSS vulnerability in the quick search component due to improper validation of user-supplied input befor...
CVE-2020-14169
The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability...
Quick Search 1.1.0.189 - search textbox Unicode SEH egghunter Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/perl = Exploit Title: Quick Search 1.1.0.189 'search textbox' Unicode SEH egghunter Buffer Overflow Date: 2015-04-23 Exploit Author: Tomislav Paskalev Vulnerable Software: Quick Search v1.1.0.189 Vendor Homepage:...
Quick Search 1.1.0.189 - search textbox Buffer Overflow (SEH Unicode) (Egghunter)
Quick Search 1.1.0.189 - search textbox Buffer Overflow SEH Unicode Egghunter !/usr/bin/perl = Exploit Title: Quick Search 1.1.0.189 'search textbox' Unicode SEH egghunter Buffer Overflow Date: 2015-04-23 Exploit Author: Tomislav Paskalev Vulnerable Software: Quick Search v1.1.0.189 Vendor...
Member of confluence-administrators group able to see restricted page in pagetree, quick search and navigation panel
Bug Background Confluence super-users or member of confluence-administrators group should be able to access any content in Confluence including restricted content as long as it have the direct URL to access as describe in our documentation...
Member of confluence-administrators group able to see restricted page in pagetree, quick search and navigation panel
Bug Background Confluence super-users or member of confluence-administrators group should be able to access any content in Confluence including restricted content as long as it have the direct URL to access as describe in our documentation...
Quick Search 1.1.0.189 - Buffer Overflow Vulnerability (SEH)
No description provided by source. Exploit Title: Quick Search Version 1.1.0.189 Buffer Overflow vulnerabilitySEH Date: 14-05-2013 Exploit Author: ariarat Vendor Homepage: http://www.glarysoft.com/ Software Link: http://download.glarysoft.com/qsearchsetup.exe Version: 1.1.0.189 Tested on: Windows...
CVE-2013-4662
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the "second layer" of the API, related to contact.getquick...
Sql injection
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the "second layer" of the API, related to contact.getquick...
CVE-2013-4662
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the "second layer" of the API, related to contact.getquick...
CVE-2013-4662
The CVE-2013-4662 entry describes a SQL injection vulnerability in CiviCRM’s Quick Search API (contact.getquick) affecting CiviCRM versions 4.2.0–4.2.9 and 4.3.0–4.3.3. The issue allows remote authenticated users to bypass the validation layer and perform SQL injection via a direct request to the...
CVE-2013-4662
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the "second layer" of the API, related to contact.getquick...
Quick Search 1.1.0.189 Buffer Overflow
Exploit Title: Quick Search Version 1.1.0.189 Buffer Overflow vulnerabilitySEH Date: 14-05-2013 Exploit Author: ariarat Vendor Homepage: http://www.glarysoft.com/ Software Link: http://download.glarysoft.com/qsearchsetup.exe Version: 1.1.0.189 Tested on: Windows 7 & windows XP sp2,sp3...
Quick Search Version 1.1.0.189 Buffer Overflow Vulnerability (SEH)
Exploit for windows platform in category dos / poc Exploit Title: Quick Search Version 1.1.0.189 Buffer Overflow vulnerabilitySEH Date: 14-05-2013 Exploit Author: ariarat Vendor Homepage: http://www.glarysoft.com/ Software Link: http://download.glarysoft.com/qsearchsetup.exe Version: 1.1.0.189...
Quick Search 1.1.0.189 - Buffer Overflow (SEH)
Exploit Title: Quick Search Version 1.1.0.189 Buffer Overflow vulnerabilitySEH Date: 14-05-2013 Exploit Author: ariarat Vendor Homepage: http://www.glarysoft.com/ Software Link: http://download.glarysoft.com/qsearchsetup.exe Version: 1.1.0.189 Tested on: Windows 7 & windows XP sp2,sp3...