CVE-2025-15053

A flaw has been found in code-projects Student Information System 1.0. This issue affects some unknown processing of the file /searchresults.php. Executing manipulation of the argument searchbox can lead to sql injection. The attack may be performed from remote. The exploit has been published and...

CVE-2025-15053 code-projects Student Information System searchresults.php sql injection

A flaw has been found in code-projects Student Information System 1.0. This issue affects some unknown processing of the file /searchresults.php. Executing manipulation of the argument searchbox can lead to sql injection. The attack may be performed from remote. The exploit has been published and...

PT-2025-52867

Name of the Vulnerable Software and Affected Versions code-projects Student Information System version 1.0 Description A flaw exists in the processing of the /searchresults.php file within the software. Manipulation of the searchbox argument can lead to SQL injection. The attack can be performed...

CVE-2024-13350

The SearchIQ – The Search Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'siqsearchbox' shortcode in all versions up to, and including, 4.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...

CVE-2024-13658

The NGG Smart Image Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'hrSISnextgensearchbox' shortcode in all versions up to, and including, 3.2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possibl...

CVE-2024-10885

The SearchIQ – The Search Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'siqsearchbox' shortcode in all versions up to, and including, 4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...

WordPress plugin SearchIQ 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2024-16619 · WordPress · Searchiq

Name of the Vulnerable Software and Affected Versions: SearchIQ – The Search Solution plugin for WordPress versions up to, and including, 4.6 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'siq searchbox' shortcode due to insufficient input sanitization and outp...

parker.com XSS vulnerability

Vulnerable URL: http://www.parker.com/portal/site/PARKER/menuitem.c9e5838e8a4c0934704b7b10237ad1ca/?searchbox=" confirm/XSSPOSED/...

iCloudCenter.net Cross Site Scripting

Exploit Title: Icdomains XSS Date: 11.11.2011 - 18.20 Author: Mr.PaPaRoSSe Tested On: BackTrack 5 - Win7 Platform: Php ------------------------------------------------------------- Searchbox alertdocument.cookie http://icloudcenter.net/demos/icdomains/searchresults.php Search...

netscapeXSS.txt

Netscape.com - Cross site scripting vulnerability ---------------------------------------------- Type: Cross site scripting Date: June, 13th 2006 ---------------------------------------------- Credits: ---------------------------------------------- Discovered by: David "Aesthetico" Vieira-Kurz...

gardenweb.txt

use the searchbox with "alert'XSS' eg url: http://search.gardenweb.com/search/nph-ind.cgi?term=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E...