Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2611 matches found

0day.today
0day.todayadded 2020/01/16 12:0 a.m.103 views

Rukovoditel Project Management CRM 2.5.2 - (reports_id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Rukovoditel Project Management CRM 2.5.2 - 'reportsid' SQL Injection Blog: https://fatihhcelik.blogspot.com/ Exploit Author: Fatih Çelik Vendor Homepage: https://www.rukovoditel.net/ Software Link:...

0.4AI score
Exploits0
Packet Storm
Packet Stormadded 2020/01/15 12:0 a.m.151 views

Rukovoditel Project Management CRM 2.5.2 SQL Injection

Exploit Title: Rukovoditel Project Management CRM 2.5.2 - 'reportsid' SQL Injection Google Dork: N/A Date: 2020-01-15 Blog: https://fatihhcelik.blogspot.com/ Exploit Author: Fatih Çelik Vendor Homepage: https://www.rukovoditel.net/ Software Link: https://sourceforge.net/projects/rukovoditel/...

0.2AI score
Exploits0
Metasploit
Metasploitadded 2020/01/14 6:50 a.m.558 views

Webmin password_change.cgi Backdoor

This module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForge downloads were backdoored, but they are listed as official downloads on the project's site. Unknown attackers inserted Perl qx statements into the build server's source code on two separate occasions: onc...

9.8CVSS0.99766EPSS
Exploits37
0day.today
0day.todayadded 2019/12/23 12:0 a.m.139 views

phpMyChat-Plus 1.98 - (pmc_username) Reflected Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version:...

7.1AI score0.21232EPSS
Exploits4
Exploit DB
Exploit DBadded 2019/12/20 12:0 a.m.126 views

phpMyChat-Plus 1.98 - 'pmc_username' Reflected Cross-Site Scripting

Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Date: 2019-12-19 Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version: 1.98 CVE: CVE-2019-19908 Description...

6.1CVSS6.5AI score0.21232EPSS
Exploits4
UbuntuCve
UbuntuCveadded 2019/12/15 8:15 p.m.28 views

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

5.5CVSS6.4AI score0.01221EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2019/12/12 3:15 a.m.25 views

CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

5.5CVSS6.8AI score0.01191EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2019/12/04 10:15 p.m.27 views

CVE-2013-2745

An SQL Injection vulnerability exists in MiniDLNA prior to 1.1.0...

9.8CVSS7.3AI score0.01981EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2019/12/04 5:16 p.m.27 views

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

5.5CVSS6.8AI score0.01069EPSS
Exploits1References2
exploitpack
exploitpackadded 2019/11/18 12:0 a.m.38 views

TemaTres 3.0 - value Persistent Cross-site Scripting

TemaTres 3.0 - value Persistent Cross-site Scripting Exploit Title: TemaTres 3.0 - 'value' Persistent Cross-site Scripting Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

3.5CVSS5.4AI score0.0094EPSS
Exploits5
0day.today
0day.todayadded 2019/11/18 12:0 a.m.74 views

TemaTres 3.0 - (value) Persistent Cross-site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: TemaTres 3.0 - 'value' Persistent Cross-site Scripting Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

7.1AI score0.0094EPSS
Exploits5
exploitpack
exploitpackadded 2019/11/18 12:0 a.m.67 views

TemaTres 3.0 - Cross-Site Request Forgery (Add Admin)

TemaTres 3.0 - Cross-Site Request Forgery Add Admin Exploit Title: TemaTres 3.0 — Cross-Site Request Forgery Add Admin Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

7.5CVSS0.2AI score0.02022EPSS
Exploits4
Exploit DB
Exploit DBadded 2019/11/18 12:0 a.m.305 views

TemaTres 3.0 - Cross-Site Request Forgery (Add Admin)

Exploit Title: TemaTres 3.0 — Cross-Site Request Forgery Add Admin Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source: https://sourceforge.net/projects/tematres/files/TemaTres%203.0/tematres3.0.zip/download Version: 3.0 CVE : 2019–14345...

9.8CVSS9.8AI score0.02022EPSS
Exploits4
exploitpack
exploitpackadded 2019/11/13 12:0 a.m.91 views

FUDForum 3.0.9 - Remote Code Execution

FUDForum 3.0.9 - Remote Code Execution Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

8.5CVSS9.5AI score0.08154EPSS
Exploits6
Exploit DB
Exploit DBadded 2019/11/13 12:0 a.m.286 views

FUDForum 3.0.9 - Remote Code Execution

Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

9CVSS9.4AI score0.08154EPSS
Exploits6
Packet Storm
Packet Stormadded 2019/11/12 12:0 a.m.94 views

FUDForum 3.0.9 Code Execution / Cross Site Scripting

// Exploit Title : FUDForum 3.0.9 - Stored XSS / Remote Code Execution // Date : 10/26/19 // Exploit Author : liquidsky JMcPeters // Vulnerable Software : FUDForum 3.0.9 // Vendor Homepage : https://sourceforge.net/projects/fudforum/ // Version : 3.0.9 // Software Link :...

9.2AI score0.08154EPSS
Exploits7
Packet Storm
Packet Stormadded 2019/11/05 12:0 a.m.236 views

File Optimizer 14.00.2524 Denial Of Service

Exploit Title: FileOptimizer 14.00.2524 - Denial of Service PoC Date: 2019-11-04 Exploit Author: Chase Hatch SYANiDE Vendor Homepage: https://sourceforge.net/projects/nikkhokkho/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2019/11/05 12:0 a.m.173 views

FileOptimizer 14.00.2524 - Denial of Service (PoC)

Exploit Title: FileOptimizer 14.00.2524 - Denial of Service PoC Date: 2019-11-04 Exploit Author: Chase Hatch SYANiDE Vendor Homepage: https://sourceforge.net/projects/nikkhokkho/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2019/10/17 12:0 a.m.151 views

ThinVNC 1.0b1 Authentication Bypass

Exploit Title: ThinVNC 1.0b1 - Authentication Bypass Date: 2019-10-17 Exploit Author: Nikhith Tumamlapalli Contributor WarMarX Vendor Homepage: https://sourceforge.net/projects/thinvnc/ Software Link: https://sourceforge.net/projects/thinvnc/files/ThinVNC1.0b1/ThinVNC1.0b1.zip/download Version:...

0.3AI score0.96758EPSS
Exploits11
exploitpack
exploitpackadded 2019/10/17 12:0 a.m.62 views

ThinVNC 1.0b1 - Authentication Bypass

ThinVNC 1.0b1 - Authentication Bypass Exploit Title: ThinVNC 1.0b1 - Authentication Bypass Date: 2019-10-17 Exploit Author: Nikhith Tumamlapalli Contributor WarMarX Vendor Homepage: https://sourceforge.net/projects/thinvnc/ Software Link:...

5CVSS0.3AI score0.96758EPSS
Exploits11
Rows per page
Query Builder