Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2004-2541

Malware in sbrugna...

4.3CVSS6.4AI score0.00427EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2004-2079

Malware in sbrugna...

7.5CVSS6.4AI score0.01414EPSS
Exploits0References7
CVE
CVEadded 2005/11/21 11:0 a.m.38 views

CVE-2004-2550

SandSurfer before version 1.7.1 is vulnerable to multiple cross-site scripting (XSS) in unspecified Perl scripts, potentially allowing attackers to inject scripts that execute in affected users’ browsers when viewing reports containing injected data. The Nessus entry and CVE records align on the ...

4.3CVSS5.9AI score0.00427EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2005/11/21 11:0 a.m.11 views

CVE-2004-2550

Multiple cross-site scripting XSS vulnerabilities in unspecified Perl scripts in SandSurfer before 1.7.1 allow remote attackers to inject arbitrary web script or HTML, which is later executed by a target who views reports containing the injected data...

5.9AI score0.00427EPSS
Exploits0References5
Cvelist
Cvelistadded 2005/05/19 4:0 a.m.13 views

CVE-2004-2087

Unknown vulnerability in SandSurfer before 1.7.0 allows remote attackers to gain access as a logged-in user...

6.8AI score0.01414EPSS
Exploits0References6
CVE
CVEadded 2005/05/19 4:0 a.m.41 views

CVE-2004-2087

CVE-2004-2087 affects SandSurfer prior to version 1.7.0. The provided sources describe an access issue in which an attacker could gain access as a logged-in user (per CVE entry) and, per Nessus content, an authentication bypass affecting versions up to 1.6.5. The exact root cause is not consisten...

7.5CVSS6.9AI score0.01414EPSS
Exploits0References6Affected Software1
NVD
NVDadded 2004/12/31 5:0 a.m.7 views

CVE-2004-2550

Multiple cross-site scripting XSS vulnerabilities in unspecified Perl scripts in SandSurfer before 1.7.1 allow remote attackers to inject arbitrary web script or HTML, which is later executed by a target who views reports containing the injected data...

4.3CVSS5.9AI score0.00427EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2004/03/04 12:0 a.m.12 views

SandSurfer < 1.7.1 XSS

The remote host is running SandSurfer, a web-based time keeping application. A vulnerability has been disclosed in all versions of this software, up to version 1.7.0 included which may allow an attacker to use it to perform cross-site scripting attacks against third-party users. %NASLMINLEVEL 703...

4.3CVSS5AI score0.00427EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2004/02/16 12:0 a.m.18 views

SandSurfer < 1.7.0 User Authentication Bypass

The remote host is running SandSurfer, a web-based time keeping application. A vulnerability has been disclosed in all versions of this software, up to version 1.6.5 included that could allow an attacker to access the application without authenticating. %NASLMINLEVEL 70300 C Tenable Network...

7.5CVSS5.5AI score0.01414EPSS
Exploits0References1
NVD
NVDadded 2004/02/08 5:0 a.m.12 views

CVE-2004-2087

Unknown vulnerability in SandSurfer before 1.7.0 allows remote attackers to gain access as a logged-in user...

7.5CVSS6.8AI score0.01414EPSS
Exploits0References6
Rows per page
Query Builder