CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6665 matches found

exploitpack•added 2009/12/14 12:0 a.m.•12 views

Ez Cart - index.php Cross-Site Scripting

Ez Cart - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41696/info Ez Cart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

6.8AI score

Exploits0

exploitpack•added 2009/12/14 12:0 a.m.•13 views

Ez Cart - sid Cross-Site Scripting

Ez Cart - sid Cross-Site Scripting source: https://www.securityfocus.com/bid/37311/info Ez Cart is prone to is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

6.8AI score

Exploits0

Exploit DB•added 2009/12/14 12:0 a.m.•29 views

Ez Poll Hoster - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/41742/info Ez Poll Hoster is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score

Exploits0

Tenable Nessus•added 2009/12/14 12:0 a.m.•19 views

FreeBSD : pligg -- XSS and Cross-Site Request Forgery (bec38383-e6cb-11de-bdd4-000c2930e89b)

secunia reports : Russ McRee has discovered some vulnerabilities in Pligg, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks. Input passed via the 'Referer' HTTP header to various scripts e.g. admin/adminconfig.php, admin/adminmodules.php,...

6.8CVSS5.4AI score0.00322EPSS

Exploits0References5

OpenVAS•added 2009/12/11 12:0 a.m.•10 views

Barracuda IM Firewall 'smtp_test.cgi' Cross-Site Scripting Vulnerabilities

Barracuda IM Firewall is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user- supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected sit...

Exploits0References2

OpenVAS•added 2009/12/10 12:0 a.m.•32 views

Sun Solaris AnswerBook2 Multiple Cross-Site Scripting Vulnerabilities

Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities. These issues arise due to insufficient sanitization of user-supplied data facilitating execution of arbitrary HTML and script code in a user's browser. The following specific issues were identified: It is...

4.3CVSS6.1AI score0.00442EPSS

Exploits4References5

exploitpack•added 2009/12/10 12:0 a.m.•12 views

Zeeways ZeeJobsite - basic_search_result.php Cross-Site Scripting

Zeeways ZeeJobsite - basicsearchresult.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37290/info ZeeJobsite is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary scri...

6.8AI score

Exploits0

Exploit DB•added 2009/12/09 12:0 a.m.•18 views

Invision Power Board (IP.Board) 3.0.3 - '.txt' MIME-Type Cross-Site Scripting

source: https://www.securityfocus.com/bid/37263/info Invision Power Board is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score

Exploits0

OpenVAS•added 2009/12/09 12:0 a.m.•15 views

moziloCMS Multiple Cross Site Scripting Vulnerabilities

The host is running moziloCMS and is prone to Multiple Cross Site Scripting Vulnerabilities OpenVAS Vulnerability Test $Id: gbmoziloCMSmultxssvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ moziloCMS Multiple Cross Site Scripting Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2009...

4.3CVSS0.1AI score0.00204EPSS

Exploits1References2

Symantec•added 2009/12/08 12:0 a.m.•32 views

Microsoft Internet Explorer (CVE-2009-3671) Uninitialized Memory Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the computer. Failed attacks m...

9.3CVSS7.1AI score0.54106EPSS

Exploits1References2Affected Software4

Check Point Advisories•added 2009/12/07 12:0 a.m.•2 views

Novell QuickFinder Server Multiple Cross Site Scripting (CVE-2009-0611)

QuickFinder is a site-specific search engine that allows users to search the public and private sites, partners' sites and any number of additional Web sites across the Internet, all from a single search interface on one Web site. A cross-site scripting vulnerability exists in Novell QuickFinder...

4.3CVSS6.8AI score0.07854EPSS

Exploits1

Exploit DB•added 2009/12/07 12:0 a.m.•21 views

Advanced Image Hosting Script 2.x - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37233/info YABSoft Advanced Image Hosting Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7AI score

Exploits0

Exploit DB•added 2009/12/04 12:0 a.m.•29 views

WordPress Plugin Yoast Google Analytics 3.2.4 - 404 Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/37209/info Yoast Google Analytics for WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score

Exploits0

exploitpack•added 2009/12/04 12:0 a.m.•11 views

Clixint Technologies DPI - Cross-Site Scripting

Clixint Technologies DPI - Cross-Site Scripting source: https://www.securityfocus.com/bid/41986/info DPI is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser ...

6.8AI score

Exploits0

Exploit DB•added 2009/12/04 12:0 a.m.•19 views

Clixint Technologies DPI - Cross-Site Scripting

source: https://www.securityfocus.com/bid/41986/info DPI is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score

Exploits0

myhack58•added 2009/12/04 12:0 a.m.•20 views

Firefox Sage extension RSS feeds cross-domain scripting vulnerability-vulnerability warning-the black bar safety net

Affected version: Mozilla Sage 1.4.3 vulnerability description: BUGTRAQ ID: 3 7 1 2 0 CVECAN ID: CVE-2 0 0 9-4 1 0 2 Sage is a Firefox the use of lightweight RSS and Atom aggregator Controller extension. Sage does not correctly filter the RSS feeds in the description tag input will be used to...

Exploits0

OpenVAS•added 2009/12/02 12:0 a.m.•25 views

phpMyFAQ <= 2.5.4 Multiple Unspecified XSS Vulnerabilities

phpMyFAQ is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS7.1AI score0.00138EPSS

Exploits1References2

OpenVAS•added 2009/12/02 12:0 a.m.•19 views

phpMyFAQ 2.5.4 and Prior Multiple Unspecified Cross Site Scripting Vulnerabilities

phpMyFAQ is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

4.3CVSS7AI score0.00138EPSS

Exploits1References3

seebug.org•added 2009/12/01 12:0 a.m.•12 views

Apache Tomcat v3.2.1 404 Error Page Cross Site Scripting Vulnerability

No description provided by source. Apache Tomcat is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...

7.1AI score

Exploits0

0day.today•added 2009/12/01 12:0 a.m.•14 views

Joomla ProofReader Component 1.0 RC6 Cross-Site Scripting Vulnerability

Exploit for unknown platform in category web applications ======================================================================= Joomla ProofReader Component 1.0 RC6 Cross-Site Scripting Vulnerability ======================================================================= The Joomla! ProofReader...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by