CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6665 matches found

Symantec•added 2006/04/11 12:0 a.m.•15 views

Microsoft Internet Explorer Erroneous IOleClientSite Data Zone Bypass Vulnerability

Description Microsoft Internet Explorer is prone to a zone-bypass vulnerability because the browser returns erroneous IOleClientSite when dynamically creating an embedded object. This could cause malicious script code to be executed in a security zone with fewer restrictions than the zone that th...

Exploits0References1Affected Software1

Symantec•added 2006/04/11 12:0 a.m.•27 views

Microsoft Internet Explorer HTML Tag Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. This is related to the handling of certain HTML tags. Attackers could exploit this issue via a malicious web page to execute arbitrary code in the context of the currently logged-in user. They could also use HT...

Exploits0References1Affected Software1

Exploit DB•added 2006/04/11 12:0 a.m.•19 views

JetPhoto 1.0/2.0/2.1 - 'detail.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17449/info JetPhoto is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in t...

securityvulns•added 2006/04/11 12:0 a.m.•36 views

ShopXS v4.0 XSS vuln.

ShopXS v4.0 XSS vuln. Vuln. discovered by : r0t Date: 10 april 2006 vendor:MK Internet-Service GmbH vendorlink:http://www.shopxs.de/ affected versions:ShopXS-Version 4.00 and previous orginal advisory:http://pridels.blogspot.com/2006/04/shopxs-v40-xss-vuln10.html Vuln. Description: Input passed t...

Symantec•added 2006/04/11 12:0 a.m.•21 views

Microsoft FrontPage Server Extensions Cross-Site Scripting Vulnerability

Description Microsoft FrontPage Server Extensions are prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before it is rendered to other users. An attacker may leverage this issue to have arbitrary script code...

Exploits0References2Affected Software3

Exploit DB•added 2006/04/10 12:0 a.m.•27 views

PHPMyForum 4.0 - 'page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17420/info phpMyForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

Exploit DB•added 2006/04/10 12:0 a.m.•93 views

PHP 4.x - 'tempnam() open_basedir' Restriction Bypass

source: https://www.securityfocus.com/bid/17439/info PHP is prone to multiple 'safemode' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to access sensitive information or to write files in unauthorized locations. These vulnerabilities would be an...

Exploit DB•added 2006/04/10 12:0 a.m.•27 views

PHPWebGallery 1.4.1 - 'category.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17421/info PHPWebGallery is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed...

exploitpack•added 2006/04/07 12:0 a.m.•9 views

TalentSoft Web+ Shop 5.0 - Deptname Cross-Site Scripting

TalentSoft Web+ Shop 5.0 - Deptname Cross-Site Scripting source: https://www.securityfocus.com/bid/17418/info Web+ Shop is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue...

Exploit DB•added 2006/04/07 12:0 a.m.•25 views

AWeb's Banner Generator 3.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/17416/info AWeb's Banner Generator is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in...

exploitpack•added 2006/04/07 12:0 a.m.•10 views

vBulletin 3.5.1 - Vbugs.php Cross-Site Scripting

vBulletin 3.5.1 - Vbugs.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17407/info vBulletin is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

exploitpack•added 2006/04/07 12:0 a.m.•30 views

Matt Wright Guestbook 2.3.1 - Guestbook.pl Multiple HTML Injection Vulnerabilities

Matt Wright Guestbook 2.3.1 - Guestbook.pl Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/17438/info Guestbook is prone to multiple HTML-injection vulnerabilities; the application fails to properly sanitize user-supplied input before using it in dynamically...

exploitpack•added 2006/04/03 12:0 a.m.•11 views

LucidCMS 2.0 - index.php Multiple Cross-Site Scripting Vulnerabilities

LucidCMS 2.0 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17360/info LucidCMS is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...

exploitpack•added 2006/04/03 12:0 a.m.•15 views

PHP 4.x5.05.1 - PHPInfo Large Input Cross-Site Scripting

PHP 4.x5.05.1 - PHPInfo Large Input Cross-Site Scripting source: https://www.securityfocus.com/bid/17362/info PHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to ha...

Exploit DB•added 2006/04/03 12:0 a.m.•30 views

Bugzero 4.3.1 - 'edit.jsp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17351/info Bugzero is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in th...

exploitpack•added 2006/03/31 12:0 a.m.•14 views

SiteSearch Indexer 3.5 - searchresults.asp Cross-Site Scripting

SiteSearch Indexer 3.5 - searchresults.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/17332/info SiteSearch Indexer is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

Exploit DB•added 2006/03/31 12:0 a.m.•28 views

SiteSearch Indexer 3.5 - 'searchresults.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17332/info SiteSearch Indexer is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

exploitpack•added 2006/03/31 12:0 a.m.•6 views

RedCMS 0.1 - login.php Multiple SQL Injections

RedCMS 0.1 - login.php Multiple SQL Injections source: https://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application is prone to HTML-injecti...

Exploit DB•added 2006/03/31 12:0 a.m.•22 views

RedCMS 0.1 - 'profile.php?u' SQL Injection

source: https://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application is prone to HTML-injection and SQL-injection vulnerabilities. A...

Exploit DB•added 2006/03/31 12:0 a.m.•20 views

Claroline 1.x - 'rqmkhtml.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17344/info Claroline is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by