CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2611 matches found

0day.today•added 2020/01/16 12:0 a.m.•102 views

Rukovoditel Project Management CRM 2.5.2 - (reports_id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Rukovoditel Project Management CRM 2.5.2 - 'reportsid' SQL Injection Blog: https://fatihhcelik.blogspot.com/ Exploit Author: Fatih Çelik Vendor Homepage: https://www.rukovoditel.net/ Software Link:...

0.4AI score

Exploits0

Packet Storm•added 2020/01/15 12:0 a.m.•149 views

Rukovoditel Project Management CRM 2.5.2 SQL Injection

Exploit Title: Rukovoditel Project Management CRM 2.5.2 - 'reportsid' SQL Injection Google Dork: N/A Date: 2020-01-15 Blog: https://fatihhcelik.blogspot.com/ Exploit Author: Fatih Çelik Vendor Homepage: https://www.rukovoditel.net/ Software Link: https://sourceforge.net/projects/rukovoditel/...

0.2AI score

Exploits0

Metasploit•added 2020/01/14 6:50 a.m.•539 views

Webmin password_change.cgi Backdoor

This module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForge downloads were backdoored, but they are listed as official downloads on the project's site. Unknown attackers inserted Perl qx statements into the build server's source code on two separate occasions: onc...

9.8CVSS0.94459EPSS

Exploits36

0day.today•added 2019/12/23 12:0 a.m.•124 views

phpMyChat-Plus 1.98 - (pmc_username) Reflected Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version:...

7.1AI score0.41864EPSS

Exploits4

Exploit DB•added 2019/12/20 12:0 a.m.•125 views

phpMyChat-Plus 1.98 - 'pmc_username' Reflected Cross-Site Scripting

Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Date: 2019-12-19 Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version: 1.98 CVE: CVE-2019-19908 Description...

6.1CVSS6.5AI score0.41864EPSS

Exploits4

UbuntuCve•added 2019/12/15 8:15 p.m.•25 views

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

5.5CVSS6.4AI score0.00462EPSS

Exploits1References2

UbuntuCve•added 2019/12/12 3:15 a.m.•22 views

CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

5.5CVSS6.8AI score0.00358EPSS

Exploits1References1

UbuntuCve•added 2019/12/04 10:15 p.m.•22 views

CVE-2013-2745

An SQL Injection vulnerability exists in MiniDLNA prior to 1.1.0...

9.8CVSS7.3AI score0.00387EPSS

Exploits0References2

UbuntuCve•added 2019/12/04 5:16 p.m.•23 views

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

5.5CVSS6.8AI score0.00265EPSS

Exploits1References2

Exploit DB•added 2019/11/18 12:0 a.m.•302 views

TemaTres 3.0 - Cross-Site Request Forgery (Add Admin)

Exploit Title: TemaTres 3.0 — Cross-Site Request Forgery Add Admin Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source: https://sourceforge.net/projects/tematres/files/TemaTres%203.0/tematres3.0.zip/download Version: 3.0 CVE : 2019–14345...

9.8CVSS9.8AI score0.0051EPSS

Exploits4

0day.today•added 2019/11/18 12:0 a.m.•58 views

TemaTres 3.0 - (value) Persistent Cross-site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: TemaTres 3.0 - 'value' Persistent Cross-site Scripting Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

7.1AI score0.00378EPSS

Exploits5

exploitpack•added 2019/11/18 12:0 a.m.•28 views

TemaTres 3.0 - Cross-Site Request Forgery (Add Admin)

TemaTres 3.0 - Cross-Site Request Forgery Add Admin Exploit Title: TemaTres 3.0 — Cross-Site Request Forgery Add Admin Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

7.5CVSS0.2AI score0.0051EPSS

Exploits4

exploitpack•added 2019/11/18 12:0 a.m.•38 views

TemaTres 3.0 - value Persistent Cross-site Scripting

TemaTres 3.0 - value Persistent Cross-site Scripting Exploit Title: TemaTres 3.0 - 'value' Persistent Cross-site Scripting Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

3.5CVSS5.4AI score0.00378EPSS

Exploits5

Exploit DB•added 2019/11/13 12:0 a.m.•280 views

FUDForum 3.0.9 - Remote Code Execution

Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

9CVSS9.4AI score0.0275EPSS

Exploits6

exploitpack•added 2019/11/13 12:0 a.m.•77 views

FUDForum 3.0.9 - Remote Code Execution

FUDForum 3.0.9 - Remote Code Execution Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

8.5CVSS9.5AI score0.0275EPSS

Exploits6

Packet Storm•added 2019/11/12 12:0 a.m.•90 views

FUDForum 3.0.9 Code Execution / Cross Site Scripting

// Exploit Title : FUDForum 3.0.9 - Stored XSS / Remote Code Execution // Date : 10/26/19 // Exploit Author : liquidsky JMcPeters // Vulnerable Software : FUDForum 3.0.9 // Vendor Homepage : https://sourceforge.net/projects/fudforum/ // Version : 3.0.9 // Software Link :...

9.2AI score0.0275EPSS

Exploits7

Packet Storm•added 2019/11/05 12:0 a.m.•235 views

File Optimizer 14.00.2524 Denial Of Service

Exploit Title: FileOptimizer 14.00.2524 - Denial of Service PoC Date: 2019-11-04 Exploit Author: Chase Hatch SYANiDE Vendor Homepage: https://sourceforge.net/projects/nikkhokkho/ Software Link:...

7.4AI score

Exploits0

Exploit DB•added 2019/11/05 12:0 a.m.•172 views

FileOptimizer 14.00.2524 - Denial of Service (PoC)

Exploit Title: FileOptimizer 14.00.2524 - Denial of Service PoC Date: 2019-11-04 Exploit Author: Chase Hatch SYANiDE Vendor Homepage: https://sourceforge.net/projects/nikkhokkho/ Software Link:...

7.4AI score

Exploits0

exploitpack•added 2019/10/17 12:0 a.m.•62 views

ThinVNC 1.0b1 - Authentication Bypass

ThinVNC 1.0b1 - Authentication Bypass Exploit Title: ThinVNC 1.0b1 - Authentication Bypass Date: 2019-10-17 Exploit Author: Nikhith Tumamlapalli Contributor WarMarX Vendor Homepage: https://sourceforge.net/projects/thinvnc/ Software Link:...

5CVSS0.3AI score0.94097EPSS

Exploits11

Packet Storm•added 2019/10/17 12:0 a.m.•148 views

ThinVNC 1.0b1 Authentication Bypass

Exploit Title: ThinVNC 1.0b1 - Authentication Bypass Date: 2019-10-17 Exploit Author: Nikhith Tumamlapalli Contributor WarMarX Vendor Homepage: https://sourceforge.net/projects/thinvnc/ Software Link: https://sourceforge.net/projects/thinvnc/files/ThinVNC1.0b1/ThinVNC1.0b1.zip/download Version:...

0.3AI score0.94097EPSS

Exploits11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by