CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

exploitpack•added 2006/04/17 12:0 a.m.•10 views

PHPFaber TopSites - index.php Cross-Site Scripting

PHPFaber TopSites - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17542/info phpFaber TopSites is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

Exploit DB•added 2006/04/17 12:0 a.m.•19 views

Coppermine 1.4.4 - 'index.php' Local File Inclusion

source: https://www.securityfocus.com/bid/17570/info Coppermine is prone to a local file-include vulnerability. This may allow unauthorized users to view files and to execute local scripts. Version 1.4.4 is vulnerable to this issue; other versions may also be affected...

exploitpack•added 2006/04/13 12:0 a.m.•14 views

LifeType 1.0.3 - index.php Cross-Site Scripting

LifeType 1.0.3 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17529/info LifeType is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in t...

exploitpack•added 2006/04/11 12:0 a.m.•15 views

JetPhoto 1.02.02.1 - gallery.php?page Cross-Site Scripting

JetPhoto 1.02.02.1 - gallery.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/17449/info JetPhoto is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may levera...

exploitpack•added 2006/04/06 12:0 a.m.•14 views

SKForum 1.x - user.View.action?userID Cross-Site Scripting

SKForum 1.x - user.View.action?userID Cross-Site Scripting source: https://www.securityfocus.com/bid/17389/info SKForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverag...

exploitpack•added 2006/04/06 12:0 a.m.•18 views

SKForum 1.x - planning.View.action?time Cross-Site Scripting

SKForum 1.x - planning.View.action?time Cross-Site Scripting source: https://www.securityfocus.com/bid/17389/info SKForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

Exploit DB•added 2006/04/05 12:0 a.m.•18 views

Chucky A. Ivey N.T. 1.1 - 'index.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/17387/info N.T. is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the...

7.4AI score

exploitpack•added 2006/03/31 12:0 a.m.•10 views

RedCMS 0.1 - profile.php?u SQL Injection

RedCMS 0.1 - profile.php?u SQL Injection source: https://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application is prone to HTML-injection and...

8.6AI score

exploitpack•added 2006/03/31 12:0 a.m.•13 views

RedCMS 0.1 - register.php Multiple Cross-Site Scripting Vulnerabilities

RedCMS 0.1 - register.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application...

0.1AI score

Exploit DB•added 2006/03/23 12:0 a.m.•34 views

CoMoblog 1.0 - 'Img.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17201/info CoMoblog is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of ...

7.4AI score

seebug.org•added 2006/03/18 12:0 a.m.•15 views

ShoutLIVE <= 1.1.0 (savesettings.php) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl ShoutLIVE = 1.1.0 Remote Php Code Execution Based on: http://www.frsirt.com/bulletins/4109 Credits: Coded by DarkFig Website: http://disarm.free.fr/bohard/ Greetz: All AcidRoot/Bod members = use IO::Socket; use LWP::Simple; if!$ARGV1headers; print...

7.1AI score

exploitpack•added 2006/03/09 12:0 a.m.•12 views

DCP-Portal 3.74.x5.x6.x - inbox.php Multiple Cross-Site Scripting Vulnerabilities

DCP-Portal 3.74.x5.x6.x - inbox.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17050/info DCP Portal is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied inpu...

exploitpack•added 2006/03/09 12:0 a.m.•16 views

MyBloggie 2.1.22.1.3 - delcomment.php Cross-Site Scripting

MyBloggie 2.1.22.1.3 - delcomment.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

Exploit DB•added 2006/03/09 12:0 a.m.•24 views

MyBloggie 2.1.2/2.1.3 - 'trackback_url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

exploitpack•added 2006/03/08 12:0 a.m.•19 views

TextFileBB 1.0 - Multiple Cross-Site Scripting Vulnerabilities

TextFileBB 1.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17029/info The 'textfileBB' application is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input...

exploitpack•added 2006/03/07 12:0 a.m.•10 views

LoudBlog 0.41 - index.php?template Traversal Arbitrary File Access

LoudBlog 0.41 - index.php?template Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/17023/info Loudblog is prone to multiple input-validation vulnerabilities: - An SQL-injection vulnerability. - Two local file-include vulnerabilities. - An information-disclosure...

exploitpack•added 2006/03/06 12:0 a.m.•13 views

DVGuestbook 1.01.2.2 - dv_gbook.php?f Cross-Site Scripting

DVGuestbook 1.01.2.2 - dvgbook.php?f Cross-Site Scripting source: https://www.securityfocus.com/bid/16968/info DVGuestbook is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

exploitpack•added 2006/03/06 12:0 a.m.•11 views

HitHost 1.0 - viewuser.php?hits Cross-Site Scripting

HitHost 1.0 - viewuser.php?hits Cross-Site Scripting source: https://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thes...

Exploit DB•added 2006/03/06 12:0 a.m.•22 views

RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/16970/info RunCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated HTML content. An attacker may leverage this issue t...