Lucene search
+L

145 matches found

Exploit DB
Exploit DB
added 2011/08/08 12:0 a.m.19 views

Search Network 2.0 - 'query' Cross-Site Scripting

source: https://www.securityfocus.com/bid/49064/info Search Network is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/08/05 12:0 a.m.7 views

Softbiz Recipes Portal Script - Multiple Cross-Site Scripting Vulnerabilities

Softbiz Recipes Portal Script - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49051/info Softbiz Recipes Portal script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

Exploits0
Exploit DB
Exploit DB
added 2011/04/19 12:0 a.m.19 views

ChatLakTurk PHP Botlu Video - 'ara.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47428/info ChatLakTurk PHP Botlu Video is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/02/24 12:0 a.m.24 views

rbot 0.9.14 - '!react' Unauthorized Access

source: https://www.securityfocus.com/bid/39915/info Rbot is prone to an unauthorized-access vulnerability because it fails to adequately sanitize user supplied data. An attacker can exploit this vulnerability to gain administrative rights to the rbot application. This will allow a remote attacke...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/02/06 12:0 a.m.20 views

ShopEx Single 4.5.1 - 'errinfo' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39941/info ShopEx Single is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/19 12:0 a.m.23 views

DataLife Engine 8.3 - '/engine/ajax/addcomments.php?_REQUEST[skin]' Remote File Inclusion

source: https://www.securityfocus.com/bid/37851/info Datalife Engine is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the computer; other attacks a...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/12/21 12:0 a.m.9 views

Kasseler CMS 1.3.4 Lite - Multiple Cross-Site Scripting Vulnerabilities

Kasseler CMS 1.3.4 Lite - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37435/info Kasseler CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/12/21 12:0 a.m.37 views

PHP-Calendar 1.1 - 'update10.php?configfile' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/37450/info PHP-Calendar is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to execute arbitrary local and remote scripts in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/12/16 12:0 a.m.14 views

Article Directory - 'login.php' SQL Injection

source: https://www.securityfocus.com/bid/37356/info Article Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

7AI score
Exploits0
seebug.org
seebug.org
added 2009/11/23 12:0 a.m.57 views

Autodesk Maya Script Nodes Arbitrary Command Execution

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk Maya Script Nodes Arbitrary Command Execution 1. Advisory Information Title: Autodesk Maya Script Nodes Arbitrary Command...

9.3CVSS6.5AI score0.04423EPSS
Exploits6
Packet Storm
Packet Storm
added 2009/11/23 12:0 a.m.63 views

Core Security Technologies Advisory 2009.0908

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk SoftImage Scene TOC Arbitrary Command Execution 1. Advisory Information Title: Autodesk SoftImage Scene TOC Arbitrary Command Execution Advisory Id:...

9.3CVSS0.5AI score0.0316EPSS
Exploits7
Exploit DB
Exploit DB
added 2009/11/23 12:0 a.m.51 views

Autodesk SoftImage Scene TOC - Arbitrary Command Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk SoftImage Scene TOC Arbitrary Command Execution 1. Advisory Information Title: Autodesk SoftImage Scene TOC Arbitrary Command Execution Advisory Id:...

9.3CVSS6.5AI score0.0316EPSS
Exploits7
0day.today
0day.today
added 2009/11/23 12:0 a.m.52 views

Autodesk SoftImage Scene TOC Arbitrary Command Execution

Exploit for unknown platform in category local exploits ======================================================== Autodesk SoftImage Scene TOC Arbitrary Command Execution ======================================================== Title: Autodesk SoftImage Scene TOC Arbitrary Command Execution CVE-ID...

6.8AI score0.0316EPSS
Exploits7
exploitpack
exploitpack
added 2009/11/16 12:0 a.m.11 views

PHD Help Desk 1.43 - area_list.php Multiple Cross-Site Scripting Vulnerabilities

PHD Help Desk 1.43 - arealist.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37029/info PHD Help Desk is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2009/10/20 12:0 a.m.19 views

Snitz Forums 2000 Cross Site Scripting and HTML Injection Vulnerabilities

Snitz Forums 2000 is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker to steal...

4.3CVSS6AI score0.01765EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2009/10/06 12:0 a.m.39 views

AfterLogic WebMail Pro 4.7.10 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/36605/info AfterLogic WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site,...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/09/11 12:0 a.m.10 views

Joomla! Component com_mediaalert - id SQL Injection

Joomla! Component commediaalert - id SQL Injection source: https://www.securityfocus.com/bid/36356/info The 'commediaalert' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting thi...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/08/21 12:0 a.m.35 views

Paypal Shopping Cart Script - 'index.php?cid' SQL Injection

source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2009/07/22 12:0 a.m.18 views

phpGroupWare Multiple Input Validation Vulnerabilities

phpGroupWare is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.8CVSS6.3AI score0.01277EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2009/06/30 12:0 a.m.38 views

XOOPS 2.3.3 - 'op' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/35895/info XOOPS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Rows per page
Query Builder