CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3242 matches found

Positive Technologies•added 2012/08/12 12:0 a.m.•4 views

PT-2012-5159 · Pbboard · Pbboard

Name of the Vulnerable Software and Affected Versions: PBBoard version 2.1.4 Description: The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several parameters, including the username parameter to the "send page", the email parameter to the "forget page"...

7.5CVSS7.5AI score0.02511EPSS

Exploits5References9

UbuntuCve•added 2012/07/11 10:26 a.m.•32 views

CVE-2011-4307

Cross-site scripting XSS vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

4.3CVSS6AI score0.01187EPSS

Exploits0References1

Prion•added 2012/07/11 10:26 a.m.•21 views

Cross site scripting

4.3CVSS6.1AI score0.01187EPSS

Exploits0References3Affected Software1

Cvelist•added 2012/07/11 10:0 a.m.•25 views

CVE-2011-4307

5.7AI score0.01187EPSS

Exploits0References3

Positive Technologies•added 2012/07/11 12:0 a.m.•3 views

PT-2012-1855 · Moodle · Moodle

Name of the Vulnerable Software and Affected Versions: Moodle versions 2.0.x through 2.0.4 Moodle versions 2.1.x through 2.1.1 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via the section parameter in the /mod/wiki/lang/en/wiki.php...

4.3CVSS5.5AI score0.01187EPSS

Exploits0References5

Tenable Nessus•added 2012/07/11 12:0 a.m.•28 views

CentOS 6 : cifs-utils (CESA-2012:0902)

An updated cifs-utils package that fixes one security issue, multiple bugs, and adds various enhancements is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score,...

2.1CVSS7.2AI score0.00729EPSS

Exploits0References2

CVE•added 2012/06/27 10:0 a.m.•58 views

CVE-2012-2817

CVE-2012-2817 is a use-after-free vulnerability in Google Chrome prior to 20.0.1132.43 related to handling of tables that have sections. The issue could allow remote attackers to cause a denial of service or potentially other unspecified impacts. Affects Chrome versions before the patch; remediat...

7.5CVSS7AI score0.01452EPSS

Exploits0References8Affected Software1

Vulnerability Lab•added 2012/06/16 12:0 a.m.•83 views

Phonalisa v5.0 VoiP - Multiple Web Vulnerabilities

Document Title: =============== Phonalisa v5.0 VoiP - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=526 Release Date: ============= 2012-06-16 Vulnerability Laboratory ID VL-ID: ==================================== 526 Comm...

7.1AI score

Exploits0

exploitpack•added 2012/06/14 12:0 a.m.•25 views

Swoopo Gold Shop CMS 8.4.56 - Multiple Web Vulnerabilities

Swoopo Gold Shop CMS 8.4.56 - Multiple Web Vulnerabilities Title: ====== Swoopo Gold Shop CMS v8.4.56 - Multiple Web Vulnerabilities Date: ===== 2012-05-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=515 VL-ID: ===== 515 Common Vulnerability Scoring System:...

0.5AI score

Exploits0

Prion•added 2012/06/05 4:55 p.m.•65 views

Memory corruption

ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource records with a zero-length RDATA section, which allows remote DNS servers to cause a denial of service daemon crash or data corruption or obta...

8.5CVSS7AI score0.13405EPSS

Exploits1References16Affected Software1

Exploit DB•added 2012/05/30 12:0 a.m.•48 views

Ganesha Digital Library 4.0 - Multiple Vulnerabilities

===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities ===================================================== :---------------------------------------------------------------------------------------------------------------------------------------...

7.4AI score

Exploits0

0day.today•added 2012/05/30 12:0 a.m.•58 views

Ganesha Digital Library 4.0 Multiple Vulnerabilities

Exploit for php platform in category web applications ===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities =====================================================...

7.1AI score

Exploits0

exploitpack•added 2012/05/30 12:0 a.m.•31 views

Ganesha Digital Library 4.0 - Multiple Vulnerabilities

Ganesha Digital Library 4.0 - Multiple Vulnerabilities ===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities =====================================================...

0.7AI score

Exploits0

Cvelist•added 2012/05/27 8:0 p.m.•19 views

CVE-2012-2936

Multiple cross-site scripting XSS vulnerabilities in Pligg CMS before 1.2.2 allow remote attackers to inject arbitrary web script or HTML via the 1 user or 2 page parameter to a admin/admincomments.php or b admin/adminlinks.php; or list parameter in a 3 move or 4 minimize action to c...

5.8AI score0.01357EPSS

Exploits0References8

0day.today•added 2012/05/15 12:0 a.m.•29 views

linux/x86 execve(/bin/dash) 42 bytes

/ linux/x86 execve/bin/dash 42 bytes Author : X-h4ck email protected, email protected www.pirate.al , www.flashcrew.in Greetz : mywisdom - Danzel - Wulns - IllyrianWarrior- Ace - M4yh3m - Saldeath ev1lut1on - Lekosta - Pretorian - bi0 - Slimshaddy - d3trimentaL CR - Hack-Down - H3ll - d4ntesA -...

7.1AI score

Exploits0

0day.today•added 2012/05/10 12:0 a.m.•30 views

Chevereto Upload Script Cross Site Scripting / User Enumeration

Exploit for php platform in category web applications ======================================================================================== Vulnerable Software: Chevereto upload script Downloaded from: http://code.google.com/p/chevereto/downloads/list...

7.1AI score

Exploits0

NVD•added 2012/04/11 10:39 a.m.•14 views

CVE-2012-2156

Multiple cross-site scripting XSS vulnerabilities in Plume CMS 1.2.4 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the uemail parameter aka Authors Email field to manager/users.php, 2 the urealname parameter aka Authors Name field to manager/users.php, or 3 the...

4.3CVSS5.7AI score0.0381EPSS

Exploits5References7

Cvelist•added 2012/04/11 10:0 a.m.•20 views

CVE-2012-2156

5.7AI score0.0381EPSS

Exploits5References7

0day.today•added 2012/04/04 12:0 a.m.•23 views

PlumeCMS <= 1.2.4 Multiple Persistent XSS

Exploit for php platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : PlumeCMS = 1.2.4 Multiple Persistent XSS Date : 04-04-2012 Author : Ivano Binetti...

7.1AI score0.0381EPSS

Exploits5

Packet Storm•added 2012/03/29 12:0 a.m.•27 views

Seditio Build 161 Cross Site Scripting / Information Disclosure

========================================================== Vulnerable Software: seditio-build161 ========================================================== Downloaded from:http://neocrome.net/page.php?id=2447&a=dl md5sum sed.rar aad96010a15f0c38e5cc321f8a91dd1b seditio-build161.rar...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by