CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6665 matches found

OpenVAS•added 2013/04/17 12:0 a.m.•27 views

WordPress Symposium Plugin XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

4.3CVSS6.7AI score0.00357EPSS

Exploits0References4

OpenVAS•added 2013/04/12 12:0 a.m.•18 views

WordPress Traffic Analyzer Plugin XSS Vulnerability

4.3CVSS6.5AI score0.08185EPSS

Exploits1References5

OpenVAS•added 2013/04/10 12:0 a.m.•25 views

Microsoft Internet Explorer Multiple Use After Free Vulnerabilities (2817183)

This host is missing a critical security update according to Microsoft Bulletin MS13-028. OpenVAS Vulnerability Test $Id: secpodms13-028.nasl 6093 2017-05-10 09:03:18Z teissa $ Microsoft Internet Explorer Multiple Use After Free Vulnerabilities 2817183 Authors: Thanga Prakash S Copyright: Copyrig...

9.3CVSS0.36834EPSS

Exploits2References2

Tenable Nessus•added 2013/04/10 12:0 a.m.•36 views

MS13-035: Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2821818)

The version of InfoPath, SharePoint Server, SharePoint Foundation, Groove Server, or Office Web Apps running on the remote host is affected by an unspecified cross-site scripting vulnerability. An attacker could exploit this by tricking a user into requesting specially crafted SharePoint content,...

4.3CVSS5.4AI score0.44955EPSS

Exploits0References2

Exploit DB•added 2013/04/09 12:0 a.m.•23 views

WordPress Plugin Traffic Analyzer - 'aoid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58948/info The Traffic Analyzer plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score

Exploits0

exploitpack•added 2013/04/09 12:0 a.m.•10 views

WordPress Plugin Traffic Analyzer - aoid Cross-Site Scripting

WordPress Plugin Traffic Analyzer - aoid Cross-Site Scripting source: https://www.securityfocus.com/bid/58948/info The Traffic Analyzer plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...

0.1AI score

Exploits0

Symantec•added 2013/04/09 12:0 a.m.•24 views

Microsoft SharePoint CVE-2013-1290 Information Disclosure Vulnerability

Description Microsoft SharePoint is prone to a remote information-disclosure vulnerability. Attackers may be able to exploit this issue to gain access to potentially sensitive information that may aid in further attacks. Technologies Affected Microsoft SharePoint Server 2013 Recommendations Run a...

3.5CVSS0.13302EPSS

Exploits0References1Affected Software1

exploitpack•added 2013/04/03 12:0 a.m.•13 views

C2 WebResource - File Cross-Site Scripting

C2 WebResource - File Cross-Site Scripting source: https://www.securityfocus.com/bid/58838/info C2 WebResource is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score

Exploits0

Exploit DB•added 2013/04/03 12:0 a.m.•31 views

C2 WebResource - 'File' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58838/info C2 WebResource is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

7.4AI score

Exploits0

Exploit DB•added 2013/04/03 12:0 a.m.•34 views

e107 - 'content_preset.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58841/info e107 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score

Exploits0

exploitpack•added 2013/03/30 12:0 a.m.•14 views

WordPress Plugin Feedweb - wp_post_id Cross-Site Scripting

WordPress Plugin Feedweb - wppostid Cross-Site Scripting source: https://www.securityfocus.com/bid/58771/info Feedweb plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute...

Exploits0

Exploit DB•added 2013/03/30 12:0 a.m.•19 views

WordPress Plugin Feedweb - 'wp_post_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58771/info Feedweb plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

7.4AI score

Exploits0

exploitpack•added 2013/03/29 12:0 a.m.•11 views

jPlayer - Jplayer.swf Script Cross-Site Scripting

jPlayer - Jplayer.swf Script Cross-Site Scripting source: https://www.securityfocus.com/bid/59030/info jPlayer is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score

Exploits0

Tenable Nessus•added 2013/03/28 12:0 a.m.•136 views

CKEditor sample_posteddata.php XSS

The version of the CKEditor installed on the remote host is affected by a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input to the 'sampleposteddata.php' script. An unauthenticated, remote attacker may be able to leverage this to inject arbitrary HTML an...

5.3AI score

Exploits0References2

Vulnerability Lab•added 2013/03/28 12:0 a.m.•35 views

Paypal Bug Bounty #48 - Persistent Web Vulnerability

Document Title: =============== Paypal Bug Bounty 48 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=830 PayPal Security UID: dyf1f8cejz Release Date: ============= 2013-03-28 Vulnerability Laboratory ID VL-ID:...

7.1AI score

Exploits0

exploitpack•added 2013/03/27 12:0 a.m.•17 views

OrionDB Web Directory - Multiple Cross-Site Scripting Vulnerabilities

OrionDB Web Directory - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58720/info OrionDB Web Directory is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to...

Exploits0

htbridge•added 2013/03/27 12:0 a.m.•44 views

Multiple Vulnerabilities in KrisonAV CMS

High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in KrisonAV CMS, which can be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-Site Scripting XSS vulnerability in KrisonAV CMS: CVE-2013-2712 The vulnerability exists due to...

5.1CVSS6.3AI score0.06607EPSS

Exploits6Affected Software1

exploitpack•added 2013/03/25 12:0 a.m.•12 views

WordPress Plugin Banners Lite - wpbanners_show.php HTML Injection

WordPress Plugin Banners Lite - wpbannersshow.php HTML Injection source: https://www.securityfocus.com/bid/58671/info The Banners Lite plugin for WordPress is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Successful exploits will allow...

7.6AI score

Exploits0

Exploit DB•added 2013/03/25 12:0 a.m.•18 views

WordPress Plugin Banners Lite - 'wpbanners_show.php' HTML Injection

source: https://www.securityfocus.com/bid/58671/info The Banners Lite plugin for WordPress is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the...

7.4AI score

Exploits0

exploitpack•added 2013/03/25 12:0 a.m.•9 views

Atmail WebMail - searchResultsTab5?filter Reflected Cross-Site Scripting

Atmail WebMail - searchResultsTab5?filter Reflected Cross-Site Scripting source: https://www.securityfocus.com/bid/65408/info Atmail is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execut...

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by