Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1673 matches found

CNVD
CNVDadded 2020/08/17 12:0 a.m.6 views

WordPress Sell Media Cross-Site Scripting Vulnerability

The WordPress plugin Sell Media is a tailored e-commerce solution that allows you to sell photos, prints, and videos through your self-hosted WordPress website. A cross-site scripting vulnerability exists in the /inc/class-search.php file in WordPress Sell Media v2.4.1. The vulnerability stems fr...

6.1CVSS6.4AI score0.08867EPSS
Exploits1References1
NVD
NVDadded 2020/08/12 10:15 p.m.11 views

CVE-2020-17362

search.php in the Nova Lite theme before 1.3.9 for WordPress allows Reflected XSS...

6.1CVSS6.3AI score0.02873EPSS
Exploits1References1
CNVD
CNVDadded 2020/03/25 12:0 a.m.1 views

Joomla! com_hdwplayer 'search.php' SQL Injection Vulnerability

Joomla! is an open source content management system CMS. An SQL vulnerability exists in Joomla! comhdwplayer 'search.php'. An attacker can exploit the vulnerability to obtain sensitive information...

7.4AI score
Exploits0References1
Packet Storm
Packet Stormadded 2020/03/23 12:0 a.m.200 views

Joomla HDWPlayer 4.2 SQL Injection

Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Date: 2020-03-23 Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link: https://www.hdwplayer.com/download/ Version: 4.2 Tested on: Debian/Nginx/Joomla!...

0.5AI score
Exploits0
exploitpack
exploitpackadded 2020/03/23 12:0 a.m.150 views

Joomla! com_hdwplayer 4.2 - search.php SQL Injection

Joomla! comhdwplayer 4.2 - search.php SQL Injection Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Date: 2020-03-23 Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link:...

0.2AI score
Exploits0
0day.today
0day.todayadded 2020/03/23 12:0 a.m.933 views

Joomla com_hdwplayer 4.2 - (search.php) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link: https://www.hdwplayer.com/download/ Version: 4...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2020/03/23 12:0 a.m.214 views

Joomla! com_hdwplayer 4.2 - 'search.php' SQL Injection

Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Date: 2020-03-23 Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link: https://www.hdwplayer.com/download/ Version: 4.2 Tested on: Debian/Nginx/Joomla!...

7.4AI score
Exploits0
NVD
NVDadded 2020/03/12 2:15 p.m.12 views

CVE-2020-10449

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-search.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00733EPSS
Exploits1References2
Prion
Prionadded 2020/03/12 2:15 p.m.11 views

Cross site scripting

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-search.php by adding a question mark ? followed by the payload...

3.5CVSS4.9AI score0.00733EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2020/03/12 1:4 p.m.16 views

CVE-2020-10449

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-search.php by adding a question mark ? followed by the payload...

5AI score0.00733EPSS
Exploits1References2
NVD
NVDadded 2020/02/11 8:15 p.m.13 views

CVE-2012-1124

SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

9.8CVSS10AI score0.04162EPSS
Exploits1References5
Prion
Prionadded 2020/02/11 8:15 p.m.12 views

Sql injection

SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

7.5CVSS9.1AI score0.04162EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2020/02/11 8:0 p.m.21 views

CVE-2012-1124

SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the searchterms parameter...

10AI score0.04162EPSS
Exploits1References5
CVE
CVEadded 2020/02/11 8:0 p.m.35 views

CVE-2012-1124

The CVE-2012-1124 entry concerns a SQL injection vulnerability in the search.php component of phxEventManager 2.0 beta 5, where user-supplied search_terms can be exploited to execute arbitrary SQL commands. According to the connected NVD entry, the flaw enables remote attackers to target the appl...

9.8CVSS9.9AI score0.04162EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2019/03/27 5:29 p.m.33 views

CVE-2017-18364

phpFK lite has XSS via the faq.php, members.php, or search.php query string or the user.php user parameter...

7.4CVSS7.2AI score0.01357EPSS
Exploits2References3
CVE
CVEadded 2019/03/27 4:59 p.m.49 views

CVE-2017-18364

CVE-2017-18364 concerns phpFK lite and is a reflected cross-site scripting (XSS) vulnerability. The affected components are the web interface files faq.php, members.php, search.php (via query strings) and user.php (via the user parameter). The underlying issue is that user-supplied input in these...

7.4CVSS6AI score0.01357EPSS
Exploits2References3Affected Software1
CNVD
CNVDadded 2019/03/08 12:0 a.m.2 views

LayerBB SQL Injection Vulnerability

LayerBB is a small set of forum software. A SQL injection vulnerability exists in LayerBB version 1.1.1. A remote attacker can exploit this vulnerability by sending the 'searchquery' parameter to the search.php file to execute SQL commands...

9.8CVSS8.3AI score0.02043EPSS
Exploits1References1
NVD
NVDadded 2019/03/07 11:29 p.m.10 views

CVE-2018-17988

LayerBB 1.1.1 and 1.1.3 has SQL Injection via the search.php searchquery parameter...

9.8CVSS10AI score0.02043EPSS
Exploits1References2
OSV
OSVadded 2019/03/07 11:29 p.m.16 views

CVE-2018-17988

LayerBB 1.1.1 and 1.1.3 has SQL Injection via the search.php searchquery parameter...

9.8CVSS8.2AI score
Exploits0References2
Prion
Prionadded 2019/03/07 11:29 p.m.12 views

Sql injection

LayerBB 1.1.1 and 1.1.3 has SQL Injection via the search.php searchquery parameter...

7.5CVSS9.9AI score0.02043EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder