CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6665 matches found

Exploit DB•added 2010/12/08 12:0 a.m.•25 views

WordPress Plugin Processing Embed 0.5 - 'pluginurl' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45266/info The Processing Embed plugin for Wordpress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

htbridge•added 2010/12/07 12:0 a.m.•31 views

Cross-site Scripting (XSS) Vulnerability in ImpressCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in ImpressCMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in ImpressCMS: CVE-2010-4616 The vulnerability exists due to input sanitation error in the...

2.6CVSS5.7AI score0.00285EPSS

Exploits1Affected Software1

Exploit DB•added 2010/12/07 12:0 a.m.•20 views

WordPress Plugin Twitter Feed - 'url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45294/info The Twitter Feed Plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Exploit DB•added 2010/12/07 12:0 a.m.•21 views

Zimplit CMS - 'English_manual_version_2.php?client' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45252/info Zimplit CMS is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

0day.today•added 2010/12/07 12:0 a.m.•20 views

MODx Revolution CMS 2.0.4-pl2 Remote XSS POST Injection Vulnerability

Exploit for php platform in category web applications ===================================================================== MODx Revolution CMS 2.0.4-pl2 Remote XSS POST Injection Vulnerability ===================================================================== getObject'modUser',array 30: 'use...

Packet Storm•added 2010/12/06 12:0 a.m.•25 views

MODx Revolution CMS Cross Site Scripting

getObject'modUser',array 30: 'username' = $POST'username', 31: ; ... 71: else if !empty$POST'forgotlogin' 72: $c = $modx-newQuery'modUser'; 73: $c-selectarray'modUser.','Profile.email','Profile.fullname'; 74: $c-innerJoin'modUserProfile','Profile'; 75: $c-wherearray 76: '...

OpenVAS•added 2010/12/01 12:0 a.m.•38 views

Pandora FMS <= 3.1 Multiple Input Validation Vulnerabilities - Active Check

Pandora FMS is prone to an authentication bypass vulnerability as well as the following input-validation vulnerabilities: - A commandinjection vulnerability - Multiple SQL injection SQLi vulnerabilities - A remote file include RFI vulnerability - An arbitrary PHP code execution vulnerability -...

Exploits0References3

OpenVAS•added 2010/11/30 12:0 a.m.•14 views

phpBB 'includes/message_parser.php' HTML Injection Vulnerability

phpBB is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal...

Exploits0References3

OpenVAS•added 2010/11/25 12:0 a.m.•8 views

TinyWebGallery Multiple Cross-Site Scripting Vulnerabilities

TinyWebGallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user- supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow th...

Exploits0References3

Packet Storm•added 2010/11/25 12:0 a.m.•18 views

jSchool Advanced Cross Site Scripting

TITLE: jSchool Advanced "action" Cross-Site Scripting PRODUCT: jSchool Advanced PRODUCT URL: http://jogjacamp.com/script4jSchoolAdvanced.html RESEARCHERS: underground-stockholm.com RESEARCHERS URL: http://underground-stockholm.com/ BUG: Input passed via the "action" parameter to index.php is not...

Packet Storm•added 2010/11/24 12:0 a.m.•28 views

MCG GuestBook 1.0 Cross Site Scripting

New eVuln Advisory: Multiple XSS in MCG GuestBook Summary: http://evuln.com/vulns/144/summary.html Details: http://evuln.com/vulns/144/description.html -----------Summary----------- eVuln ID: EV0144 Software: MCG GuestBook Vendor: Mrcgiguy Version: 1.0 Critical Level: low Type: Cross Site Scripti...

Exploit DB•added 2010/11/24 12:0 a.m.•34 views

SimpLISTic SQL 2.0 - 'email.cgi' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45040/info SimpLISTic SQL is prone to a cross-site-scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

Exploit DB•added 2010/11/23 12:0 a.m.•18 views

ZYXEL P-660R-T1 V2 - 'HomeCurrent_Date' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45027/info ZyXEL P-660R-T1 V2 is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary HTML and script code in the browser of an unsuspecting us...

htbridge•added 2010/11/22 12:0 a.m.•40 views

Cross-site Scripting (XSS) Vulnerabilities in Zimplit CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Zimplit CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in Zimplit CMS: CVE-2010-4513 1.1 The vulnerability exists due to input sanitation error in...

4.3CVSS6.2AI score0.01041EPSS

Exploits1Affected Software1

Exploit DB•added 2010/11/17 12:0 a.m.•19 views

SAP NetWeaver 7.0 - SQL Monitor Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44904/info The SQL Monitor of SAP NetWeaver is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of a...

exploitpack•added 2010/11/16 12:0 a.m.•18 views

Eclipse 3.6.1 - Help Server helpadvancedcontent.jsp Cross-Site Scripting

Eclipse 3.6.1 - Help Server helpadvancedcontent.jsp Cross-Site Scripting source: https://www.securityfocus.com/bid/44883/info Eclipse IDE Help component is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage...

Exploit DB•added 2010/11/16 12:0 a.m.•21 views

DServe - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44881/info DServe is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

exploitpack•added 2010/11/16 12:0 a.m.•22 views

Eclipse 3.6.1 - Help Server helpindex.jsp Cross-Site Scripting

Eclipse 3.6.1 - Help Server helpindex.jsp Cross-Site Scripting source: https://www.securityfocus.com/bid/44883/info Eclipse IDE Help component is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues...

Exploit DB•added 2010/11/16 12:0 a.m.•39 views

Eclipse 3.6.1 - Help Server 'help/index.jsp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44883/info Eclipse IDE Help component is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

exploitpack•added 2010/11/16 12:0 a.m.•9 views

DServe - Multiple Cross-Site Scripting Vulnerabilities

DServe - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/44881/info DServe is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by