CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

5314 matches found

CVE•added 2006/05/09 10:0 a.m.•37 views

CVE-2006-2248

CVE-2006-2248 affects Xeneo Web Server 2.2.22.0. The issue allows remote attackers to obtain the source code of script files by sending crafted requests that include dot, space, and slash characters in the file extension. This is a direct information disclosure vulnerability affecting the server’...

5CVSS6.8AI score0.00572EPSS

Exploits0References6Affected Software1

securityvulns•added 2006/05/09 12:0 a.m.•26 views

[SA19996] 2005-Comments-Script Multiple Vulnerabilities

TITLE: 2005-Comments-Script Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19996 VERIFY ADVISORY: http://secunia.com/advisories/19996/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: 2005-Comments-Script http://secunia.com/product/9778/ DESCRIPTION: Some...

securityvulns•added 2006/05/06 12:0 a.m.•36 views

RaidenHTTPD Web server / Quick 'n Easy Web Server / Baby ASP / Blazix Web Server / AN HTTPD / Xeneo scripts source code disclosure

It's possible to retrieve script source code by adding " ./" to request...

Exploits0References7Affected Software5

securityvulns•added 2006/05/03 12:0 a.m.•27 views

albinator <= 2.0.8 Remote File Inclusion Vuln and XSS

albinator = 2.0.8 Remote File Inclusion Vuln and XSS Vuln. discovered by :VietMafia & r0t Pridels Sec Crew Date: 3 may 2006 vendor:http://www.albinator.com/ affected versions:2.8 and prior orginal advisory:http://pridels.blogspot.com/2006/05/albinator-208-remote-file-inclusion.html Vuln...

securityvulns•added 2006/05/02 12:0 a.m.•37 views

CyberBuild vuln.

CyberBuild vuln. Vuln. discovered by : r0t Date: 1 may 2006 vendorlink:www.smartwin.com.au/cyberbuild.htm affected versions:last orginal advisory:http://pridels.blogspot.com/2006/05/cyberbuild-vuln.html Vuln. Description: 1. SQL injection. CyberOffice Warehouse Builder contains a flaw that allows...

securityvulns•added 2006/05/01 12:0 a.m.•28 views

Avactis Shopping Cart vuln.

Avactis Shopping Cart vuln. Vuln. discovered by : r0t Date: 1 may 2006 vendor:http://www.avactis.com affected versions:0.1.2 and prior orginal advisory: http://pridels.blogspot.com/2006/05/avactis-shopping-cart-vuln.html Vuln. Description: 1. sql inj. Avactis Shopping Cart contains a flaw that...

securityvulns•added 2006/04/30 12:0 a.m.•37 views

MaxTrade sql inj.

MaxTrade sql inj. Vuln. discovered by : r0t Date: 30 april 2006 vendorlink:http://avalonbg.com/ensoft.html affected versions:1.0.1 and prior orginal advisory:http://pridels.blogspot.com/2006/04/maxtrade-sql-inj.html Vuln. Description: MaxTrade contains a flaw that allows a remote sql injection...

securityvulns•added 2006/04/30 12:0 a.m.•27 views

Barracuda vuln.

Barracuda vuln. Vuln. discovered by : r0t Date: 30 april 2006 vendor:www.boonex.com/products/barracuda/ affected versions:1.1 and prior orginal advisory:http://pridels.blogspot.com/2006/04/barracuda-vuln.html Vuln. Description: Barracuda Directory contains a flaw that allows a remote sql injectio...

securityvulns•added 2006/04/30 12:0 a.m.•27 views

CPS <=3.4.0 XSS

CPS =3.4.0 XSS Vuln. discovered by : r0t Date: 30 april 2006 vendorlink:http://www.cps-project.org/ affected versions:3.4.0 and prior orginal avdisory: http://pridels.blogspot.com/2006/04/cps-340-xss.html Vuln. Description: CPS contains a flaw that allows a remote cross site scripting attack. Thi...

securityvulns•added 2006/04/30 12:0 a.m.•30 views

RT: Request Tracker vuln.

RT: Request Tracker vuln. Vuln. discovered by : r0t Date: 30 april 2006 vendor:www.bestpractical.com/?rt=3.5.HEAD affected versions:RT 3.5.HEAD orginal advisory: http://pridels.blogspot.com/2006/04/rt-request-tracker-vuln.html Vuln. Description: RT contains a flaw that may lead to an unauthorized...

Cvelist•added 2006/04/26 8:0 p.m.•14 views

CVE-2006-2052

Cross-site scripting XSS vulnerability in Verosky Media Instant Photo Gallery allows remote attackers to inject arbitrary web script or HTML via the member parameter in a viewpro action in member.php. NOTE: the original report may be inaccurate, since the "viewpro" string does not appear in the...

5.8AI score0.00548EPSS

Exploits1References5

securityvulns•added 2006/04/26 12:0 a.m.•112 views

Cartweaver ColdFusion vuln.

Cartweaver ColdFusion vuln. Vuln. discovered by : r0t Date: 25 april 2006 vendorlink:www.cartweaver.com affected versions:2.16.11 and previous orginal advisory:http://pridels.blogspot.com/2006/04/cartweaver-coldfusion-vuln.html Vuln. Description: 1. SQL Injection vuln. Cartweaver ColdFusion...

securityvulns•added 2006/04/21 12:0 a.m.•37 views

[SA19727] @1 Event Publisher Multiple Vulnerabilities

TITLE: @1 Event Publisher Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19727 VERIFY ADVISORY: http://secunia.com/advisories/19727/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Exposure of sensitive information WHERE: From remote SOFTWARE: @1 Event Publisher...

securityvulns•added 2006/04/21 12:0 a.m.•36 views

phpLDAPadmin multiple vuln.

phpLDAPadmin multiple vuln. Vuln. discovered by : r0t Date: 21 april 2006 vendorlink:http://phpldapadmin.sourceforge.net/ affected versions:phpLDAPadmin 0.9.8 and prior orginal advisory: http://pridels.blogspot.com/2006/04/phpldapadmin-multiple-vuln.html Vuln. Description: phpLDAPadmin contains a...

securityvulns•added 2006/04/21 12:0 a.m.•34 views

phpMyAdmin XSS vuln.

phpMyAdmin XSS vuln. Vuln. discovered by : r0t Date: 20 april 2006 vendorlink:http://www.phpmyadmin.net/ affected versions: phpMyAdmin 2.8.0.3 phpMyAdmin 2.8.0.2 phpMyAdmin 2.8.1-dev CVS version phpMyAdmin 2.9.0-dev CVS version and prior versions also can be affected orginal advisory:...

securityvulns•added 2006/04/21 12:0 a.m.•38 views

X-Cart SQL inj. vuln.

X-Cart SQL inj. vuln. Vuln. discovered by : r0t Date: 20 april 2006 vendorlink:http://www.x-cart.com/ affected versions: X-Cart Gold v4.0.18 X-Cart Pro v4.0.18 X-Cart 4.1.0 beta 1 and prior versions also can be affected . orginal advisory:...

securityvulns•added 2006/04/20 12:0 a.m.•59 views

AWStats 6.5.x multiple vuln.

AWStats 6.5.x multiple vuln. Vuln. discovered by : r0t Date: 20 april 2006 vendorlink:http://awstats.sourceforge.net/ affected versions: 6.5 build 1.857 and prior orginal advisory: http://pridels.blogspot.com/2006/04/awstats-65x-multiple-vuln.html Vuln. Description: 1. Cross-Site Scripting AWStat...

securityvulns•added 2006/04/20 12:0 a.m.•41 views

Net Clubs Pro XSS vuln

Net Clubs Pro XSS vuln Vuln. discovered by : r0t Date: 20 april 2006 vendor:www.aasimedia.com/nc/nc.shtml affected versions:4.0 and prior orginal advisory: http://pridels.blogspot.com/2006/04/net-clubs-pro-xss-vuln.html Vuln. Description: Net Clubs Pro contains a flaws that allows a remote cross...

securityvulns•added 2006/04/19 12:0 a.m.•26 views

Visale XSS vuln.

Visale XSS vuln. Vuln. discovered by : r0t Date: 19 april 2006 vendor:http://www.visale.com/ affected versions: 1.0 and previous orginal advisory:http://pridels.blogspot.com/2006/04/visale-xss-vuln.html Vuln. Description: Visale contains a flaw that allows a remote cross site scripting attack. Th...

securityvulns•added 2006/04/19 12:0 a.m.•24 views

[SA19654] Boardsolution "keyword" Cross-Site Scripting Vulnerability

TITLE: Boardsolution "keyword" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19654 VERIFY ADVISORY: http://secunia.com/advisories/19654/ CRITICAL: Less critical IMPACT: Cross Site Scripting, Exposure of system information WHERE: From remote SOFTWARE: Boardsolution 1.x...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by