Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6665 matches found

Exploit DB
Exploit DBadded 2007/06/01 12:0 a.m.28 views

PHPLive! 3.2.2 - 'chat.php?sid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/06/01 12:0 a.m.26 views

Prototype of an PHP Application 0.1 - 'index.php?path_inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to execute an arbitrary remote file...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/06/01 12:0 a.m.20 views

Prototype of an PHP Application 0.1 - '/menu/menuprincipal.php?path_inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to execute an arbitrary remote file...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/30 12:0 a.m.27 views

Particle Gallery 1.0 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24236/info Particle Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/05/28 12:0 a.m.13 views

FlashChat F_CMS 4.7.9 - Multiple Remote File Inclusions

FlashChat FCMS 4.7.9 - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/24190/info FlashChat is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to...

0.4AI score
Exploits0
exploitpack
exploitpackadded 2007/05/19 12:0 a.m.12 views

ClientExec 3.0 - index.php Multiple Cross-Site Scripting Vulnerabilities

ClientExec 3.0 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24061/info ClientExec is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/17 12:0 a.m.39 views

VP-ASP Shopping Cart 6.50 - 'ShopContent.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24033/info VP-ASP Shopping Cart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2007/05/16 12:0 a.m.38 views

Debian DSA-1290-1 : squirrelmail - missing input sanitising

It was discovered that the webmail package Squirrelmail performs insufficient sanitising inside the HTML filter, which allows the injection of arbitrary web script code during the display of HTML email messages. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

4.3CVSS5.6AI score0.00981EPSS
Exploits1References2
Exploit DB
Exploit DBadded 2007/05/10 12:0 a.m.29 views

PHP Multi User Randomizer 2006.09.13 - 'Configure_Plugin.TPL.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23917/info PHP Multi User Randomizer is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
Symantec
Symantecadded 2007/05/09 12:0 a.m.13 views

Symantec Norton Antivirus NAVOPTS.DLL ActiveX Control Remote Code Execution Vulnerability

Description Symantec Norton Antivirus ActiveX control is prone to a remote code-execution vulnerability. An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document. Successful exploits will allow attackers to execute arbitrary code in the context of th...

0.9AI score
Exploits0References1Affected Software3
exploitpack
exploitpackadded 2007/05/08 12:0 a.m.11 views

Advanced Guestbook 2.4.2 - picture.php Cross-Site Scripting

Advanced Guestbook 2.4.2 - picture.php Cross-Site Scripting source: https://www.securityfocus.com/bid/23873/info Advanced Guestbook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execu...

0.2AI score
Exploits0
Symantec
Symantecadded 2007/05/08 12:0 a.m.13 views

Microsoft Internet Explorer Object Handling Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. This vulnerability is related to how the browser handles uninitialized or deleted objects. An attacker could exploit this issue to execute arbitrary code in the context of the user running the affected...

8AI score
Exploits0Affected Software6
Symantec
Symantecadded 2007/05/08 12:0 a.m.17 views

Microsoft Internet Explorer Property Method Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application. Technologies Affected Avaya Agent Access Avaya Basic Call Management System...

Exploits0Affected Software6
Exploit DB
Exploit DBadded 2007/05/08 12:0 a.m.42 views

Advanced Guestbook 2.4.2 - 'picture.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23873/info Advanced Guestbook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

7AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/07 12:0 a.m.16 views

Kayako eSupport 3.0.90 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23864/info Kayako eSupport is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/05/07 12:0 a.m.8 views

Kayako eSupport 3.0.90 - index.php Cross-Site Scripting

Kayako eSupport 3.0.90 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/23864/info Kayako eSupport is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/04 12:0 a.m.25 views

Microsoft SharePoint Server 3.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/23832/info Microsoft SharePoint Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/05/03 12:0 a.m.11 views

D-Link DSL-G624T - Var:RelaodHref Cross-Site Scripting

D-Link DSL-G624T - Var:RelaodHref Cross-Site Scripting source: https://www.securityfocus.com/bid/23802/info D-Link DSL-G624T is prone to a cross-site scripting vulnerability. This issue is due to a failure to properly sanitize user-supplied input. An attacker may leverage this issue to have...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2007/05/03 12:0 a.m.21 views

D-Link DSL-G624T - Var:RelaodHref Cross-Site Scripting

source: https://www.securityfocus.com/bid/23802/info D-Link DSL-G624T is prone to a cross-site scripting vulnerability. This issue is due to a failure to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/04/26 12:0 a.m.23 views

MoinMoin 1.5.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23676/info MoinMoin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Rows per page
Query Builder