Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2006-3154

Malware in sbrugna...

5.8CVSS6.4AI score0.00527EPSS
Exploits0References8
OSV
OSVadded 2022/05/24 5:24 p.m.12 views

GHSA-QVW9-6567-WQ78 MunkiReport reportdata module SQL injection vulnerability

A SQL injection vulnerability in reportdatacontroller.php in the reportdata module before 3.5 for MunkiReport allows attackers to execute arbitrary SQL commands via the req parameter of the /module/reportdata/ip endpoint...

8.8CVSS9.2AI score0.00374EPSS
Exploits0References6
Cvelist
Cvelistadded 2015/05/18 3:0 p.m.16 views

CVE-2015-2346

XML external entity XXE vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter...

6.3AI score0.00123EPSS
Exploits2References2
Prion
Prionadded 2015/05/08 2:59 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote attackers to inject arbitrary web script or HTML via the command XML element in the req parameter to flexdata.action in 1 common/, 2 monitor/, or 3 psnpm/ or the 4 module XML element in the r...

4.3CVSS6.3AI score0.00155EPSS
Exploits2References4Affected Software1
NVD
NVDadded 2007/09/11 7:17 p.m.9 views

CVE-2007-4822

Cross-site request forgery CSRF vulnerability in the device management interface in Buffalo AirStation WHR-G54S 1.20 allows remote attackers to make configuration changes as an administrator via HTTP requests to certain HTML pages in the res parameter with an inp req parameter to cgi-bin/cgi, as...

4.3CVSS6.7AI score0.0042EPSS
Exploits1References8
Cvelist
Cvelistadded 2006/06/22 10:0 p.m.13 views

CVE-2006-3157

Cross-site scripting XSS vulnerability in index.php in Thinkfactory UltimateGoogle 1.00 and earlier allows remote attackers to inject arbitrary web script or HTML via the REQ parameter...

5.7AI score0.00527EPSS
Exploits0References7
NVD
NVDadded 2005/11/29 11:3 a.m.8 views

CVE-2005-3866

Cross-site scripting XSS vulnerability in SearchFeed Search Engine 1.3.2 and earlier allows remote attackers to inject arbitrary HTML and web script, possibly via the REQ parameter, which is used when performing a search...

4.3CVSS5.9AI score0.00622EPSS
Exploits1References6
NVD
NVDadded 2005/11/29 11:3 a.m.13 views

CVE-2005-3869

Cross-site scripting XSS vulnerability in index.php in Google API Search 1.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via hex-encoded values in the REQ parameter...

4.3CVSS5.6AI score0.00745EPSS
Exploits0References6
Cvelist
Cvelistadded 2005/11/29 11:0 a.m.15 views

CVE-2005-3867

Cross-site scripting XSS vulnerability in RevenuePilot Search Engine Script 1.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the REQ parameter, which is used when performing a search...

5.7AI score0.00527EPSS
Exploits0References7
Cvelist
Cvelistadded 2005/11/29 11:0 a.m.16 views

CVE-2005-3866

Cross-site scripting XSS vulnerability in SearchFeed Search Engine 1.3.2 and earlier allows remote attackers to inject arbitrary HTML and web script, possibly via the REQ parameter, which is used when performing a search...

5.9AI score0.00622EPSS
Exploits1References6
Rows per page
Query Builder