CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Microsoft Windows Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code via an embedded script that uses Shell Helper objects and a shortcut link to execute the target script...

7.5CVSS8AI score0.1637EPSS

Exploits1References1

Github Security Blog•added 2025/03/20 12:32 p.m.•8 views

TorchServe script references S3 bucket without ensuring ownership or confirming accessibility

In the latest version of pytorch/serve, the script 'uploadresultstos3.sh' references the S3 bucket 'benchmarkai-metrics-prod' without ensuring its ownership or confirming its accessibility. This could lead to potential security vulnerabilities or unauthorized access to the bucket if it is not...

6.3CVSS6.8AI score0.00164EPSS

Exploits0References3Affected Software1

CNNVD•added 2023/02/16 12:0 a.m.•0 views

Mapos 跨站脚本漏洞

Mapos is a service order control system by Ramon Silva Personal Developer. A security vulnerability exists in Mapos version 4.39.0, which stems from the presence of multiple cross-site scripting XSS vulnerabilities that can be exploited by an attacker to execute arbitrary code...

6.1CVSS6.3AI score0.00646EPSS

Exploits1References4

Exploit DB•added 2016/01/21 12:0 a.m.•57 views

NTP - Local Privilege Escalation

Source: http://www.halfdog.net/Security/2015/NtpCronjobUserNtpToRootPrivilegeEscalation/ Introduction Problem description: The cronjob script bundled with ntp package is intended to perform cleanup on statistics files produced by NTP daemon running with statistics enabled. The script is run as ro...

7.4AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Solution Scripts Home Free 1.0 search.cgi Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/921/info Home Free is a suite of Perl cgi scripts that allow a website to support user contributions of various types. One of the scripts, search.cgi, accepts a parameter called letter which can be any text string. The...

7.1AI score

Exploits0

0day.today•added 2013/07/10 12:0 a.m.•39 views

Zoom X4 / X5 SQL Injection / Authentication Bypass Vulnerabilities

Zoom X4 and X5 modems suffers from authentication bypass and remote SQL injection vulnerabilities. Vulnerable Products - Zoom X4 ADSL Modem and Router running Nucleus/4.3 UPnP/1.0Virata-EmWeb/R620 Server All GS Firmware versions Zoom X5 ADSL Modem and Router running Nucleus/4.3...

8.5AI score

Exploits0

0day.today•added 2010/05/30 12:0 a.m.•200 views

Zeeways Script Multiple Vulnerabilities

Exploit for php platform in category web applications ======================================= Zeeways Script Multiple Vulnerabilities ======================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ ...

7.1AI score

Exploits0

Exploit DB•added 2010/04/26 12:0 a.m.•28 views

2DayBiz Advanced Poll Script - Cross-Site Scripting / Authentication Bypass

XSS and Authentication bypass in Advanced Poll Script Vendor:http://www.2daybiz.com/ Author:Sid3^effects Description : Advanced Poll is a polling system with powerful administration tool supports both text file and MySQL database. Its features include multiple polls, unlimited options, IP-Logging...

7.4AI score

Exploits0

Packet Storm•added 2009/08/06 12:0 a.m.•25 views

AccessoriesMe PHP Affiliate Script 1.4 SQL Injection / XSS

/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || AccessoriesMe PHP Affiliate Script v1.4 bSQL-XSS Multiple Remote Vulnerabilities Discovered By : Moudi Contact : Download :...

1.3AI score

Exploits0

exploitpack•added 2009/08/05 12:0 a.m.•14 views

AccessoriesMe PHP Affiliate Script 1.4 - Blind SQL Injection Cross-Site Scripting

AccessoriesMe PHP Affiliate Script 1.4 - Blind SQL Injection Cross-Site Scripting / | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || AccessoriesMe PHP Affiliate Script v1.4 bSQL-XSS Multiple...

1.1AI score

Exploits0

securityvulns•added 2007/08/16 12:0 a.m.•32 views

Vulnerability in multiple "now playing" scripts for various IRC clients

In October 2006 I discovered many "now playing" scripts for various IRC clients allow an attacker to send commands to the IRC server on behalf of the user. Details ======= Many scripts for various IRC clients, that report the name of the currently playing song in a media player on IRC share the...

0.1AI score

Exploits0

securityvulns•added 2006/09/26 12:0 a.m.•58 views

wwwthreads <= 5.4.2 croos site script vulnerbilities

PerSiaNFoX DigitaL SecuritY TeaM wwwthreads = 5.4.2 Cross Site Script Vulnerabilities Script...

0.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by