CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

229 matches found

securityvulns•added 2008/04/01 12:0 a.m.•34 views

Terracotta Personal Edition Multiple vulnerabilities

Its been awhile since I've posted something, so lets get to the goods. Terracotta is a an open source CMS from http://sourceforge.net/projects/terracotta/ First up, we have Full path disclosure vulnerabilities in the GET'd variable 'File'. Specify something other than whats in the list and we get...

Exploits0

Positive Technologies•added 2007/04/18 12:0 a.m.•1 views

PT-2007-3439 · Openconcept · Openconcept Back-End Cms

Name of the Vulnerable Software and Affected Versions: OpenConcept Back-End CMS version 0.4.7 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the includes path parameter to various PHP files, including "click.php" and "pollcollector.php" in the htdocs...

7.5CVSS8AI score0.01078EPSS

Exploits0References7

Exploit DB•added 2006/09/21 12:0 a.m.•20 views

BandSite CMS 1.1 - 'bio_content.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to access sensitive information, execute arbitrary server-side...

7.4AI score

Exploits0

exploitpack•added 2006/09/21 12:0 a.m.•14 views

BandSite CMS 1.1 - mp3_content.php Cross-Site Scripting

BandSite CMS 1.1 - mp3content.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to access...

6.8AI score

Exploits0

Exploit DB•added 2006/09/21 12:0 a.m.•17 views

BandSite CMS 1.1 - 'shows_content.php' Cross-Site Scripting

7.4AI score

Exploits0

Exploit DB•added 2006/08/21 12:0 a.m.•24 views

PHProjekt Content Management Module 0.6.1 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/19628/info Multiple remote file-include vulnerabilities affect the Content Management module for PHProjekt because the application fails to properly sanitize user-supplied input before using it in a PHP 'include' function call. An attacker may leverage...

7.4AI score

Exploits0

exploitpack•added 2005/10/18 12:0 a.m.•15 views

MySource 2.14 - mime.php?PEAR_PATH Remote File Inclusion

MySource 2.14 - mime.php?PEARPATH Remote File Inclusion source: https://www.securityfocus.com/bid/15133/info MySource is prone to multiple remote and local file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

7.5AI score

Exploits0

Exploit DB•added 2005/02/19 12:0 a.m.•26 views

PMachine Pro 2.4 - Remote File Inclusion

source: https://www.securityfocus.com/bid/12597/info PMachine Pro is reported prone to a remote file include vulnerability. This issue affects the 'mailautocheck.php' script. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileg...

7.4AI score

Exploits0

Symantec•added 2004/09/20 12:0 a.m.•16 views

Mambo Open Source Multiple Input Validation Vulnerabilities

Description Mambo open source is reportedly affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly validate user-supplied URI parameters. An attacker may leverage these issues to execute arbitrary server-side script code on an...

7.9AI score

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by