CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7422 matches found

Exploit DB•added 2010/12/21 12:0 a.m.•21 views

html-edit CMS - Multiple Vulnerabilities

Vulnerability ID: HTB22734 Reference: http://www.htbridge.ch/advisory/sqlinjectioninhtmleditcms.html Product: HTML-EDIT CMS Vendor: html-edit web services http://www.html-edit.org/ Vulnerable Version: 3.1.8 Vendor Notification: 02 December 2010 Vulnerability Type: SQL Injection Status: Fixed by...

securityvulns•added 2010/12/21 12:0 a.m.•46 views

SQL injection in Hycus CMS

Vulnerability ID: HTB22740 Reference: http://www.htbridge.ch/advisory/sqlinjectioninhycuscms2.html Product: Hycus CMS Vendor: Hycus Web Development Team http://www.hycus.com/ Vulnerable Version: 1.0.3 Vendor Notification: 07 December 2010 Vulnerability Type: SQL Injection Status: Not Fixed, Vendo...

exploitpack•added 2010/12/20 12:0 a.m.•42 views

Elcom CommunityManager.NET - Authentication Bypass

Elcom CommunityManager.NET - Authentication Bypass Elcom CommunityManager.NET Auth Bypass Vulnerability - Security Advisory - SOS-10-004 Release Date. 20-Dec-2010 Last Update. - Vendor Notification Date. 22-Jan-2010 Product. Elcom Technology's CommunityManager.NET Platform. IIS with ASP.NET...

The Hacker News•added 2010/12/17 4:23 a.m.•16 views

Metasploit Framework v3.5.1 Updated Version Download !

Our favourite exploitation framework – The Metasploit Framework has been updated! We now have Metasploit version 3.5.1! "The Metasploit Framework is a penetration testing toolkit, exploit development platform, and research tool. The framework includes hundreds of working remote exploits for a...

securityvulns•added 2010/12/17 12:0 a.m.•54 views

www.eVuln.com : "link" and "linkdescription" XSS in Social Share

www.eVuln.com advisory: "link" and "linkdescription" XSS in Social Share Summary: http://evuln.com/vulns/165/summary.html Details: http://evuln.com/vulns/165/description.html -----------Summary----------- eVuln ID: EV0165 Software: Social Share Vendor: n/a Version: 2010-06-05 Critical Level: low...

securityvulns•added 2010/12/15 12:0 a.m.•33 views

XSS vulnerability in BLOG:CMS

Vulnerability ID: HTB22725 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinblogcms1.html Product: BLOG:CMS Vendor: Radek Hulan http://blogcms.com/ Vulnerable Version: 4.2.1.e and probably prior versions Vendor Notification: 30 November 2010 Vulnerability Type: XSS Cross Site Scriptin...

securityvulns•added 2010/12/14 12:0 a.m.•36 views

[SECURITY] [DSA-2133-1] New collectd packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2133-1 [email protected] http://www.debian.org/security/ Raphael Geissert December 13, 2010 http://www.debian.org/security/faq -...

5CVSS0.3AI score0.02125EPSS

OSV•added 2010/12/13 12:0 a.m.•24 views

DSA-2133-1 collectd - denial of service

Bulletin has no description...

5CVSS6.1AI score0.02125EPSS

The Hacker News•added 2010/12/09 9:45 a.m.•11 views

GnackTrack R2 - Penetration Testing linux !

"GnackTracksh is a Live and installable Linux distribution designed for Penetration Testing and is based on Ubuntu. Although this sounds like BackTrack, it's most certainly not; it's very similar but based on the much loved GNOME!" This release does NOT contain Nessus pre-installed as the authors...

securityvulns•added 2010/12/08 12:0 a.m.•45 views

XSS vulnerability in Zimplit CMS

Vulnerability ID: HTB22716 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinzimplitcms1.html Product: Zimplit CMS Vendor: Zimplit http://www.zimplit.com/ Vulnerable Version: Current at 22.11.2010 and Probably Prior Versions Vendor Notification: 22 November 2010 Vulnerability Type: XSS...

Fedora•added 2010/12/07 8:10 p.m.•37 views

[SECURITY] Fedora 13 Update: dnsperf-1.0.1.0-19.fc13

This is dnsperf, a collection of DNS server performance testing tools. For more information, see the dnsperf1 and resperf1 man pages...

6.4CVSS1.9AI score0.1692EPSS

Packet Storm•added 2010/12/07 12:0 a.m.•34 views

Exponent CMS 2.0.0pr2 Local File Inclusion

============================= Vulnerability ID: HTB22718 Reference: http://www.htbridge.ch/advisory/lfiinexponentcms1.html Product: Exponent CMS Vendor: http://www.exponentcms.org/ http://www.exponentcms.org/ Vulnerable Version: 2.0.0pr2 Vendor Notification: 22 November 2010 Vulnerability Type:...

securityvulns•added 2010/12/06 12:0 a.m.•44 views

Local file view in Etomite

Vulnerability ID: HTB22712 Reference: http://www.htbridge.ch/advisory/localfileviewinetomite.html Product: Etomite Vendor: http://www.etomite.org/ http://www.etomite.org/ Vulnerable Version: 1.1 Vendor Notification: 18 November 2010 Vulnerability Type: Status: Not Fixed, Vendor Alerted, Awaiting...

The Hacker News•added 2010/12/04 1:43 a.m.•12 views

Dradis v2.6 - Tool for sharing information during security testing !

"Dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of...

securityvulns•added 2010/12/01 12:0 a.m.•59 views

Path disclosure in DynPG

Vulnerability ID: HTB22702 Reference: http://www.htbridge.ch/advisory/pathdisclosureindynpg.html Product: DynPG Vendor: dynpg.org http://www.dynpg.org/ Vulnerable Version: 4.2.0 Vendor Notification: 16 November 2010 Vulnerability Type: Path disclosure Status: Fixed by Vendor Risk level: Low Credi...

seebug.org•added 2010/12/01 12:0 a.m.•15 views

NoScript可绕过 "Reflective XSS"检测漏洞

NoScript Firefox extension是一款免费的开源插件，提供对Firefox、Seamonkey和其他基于Mozilla浏览器的额外保护。 NoScript的实现上存在漏洞，远程攻击者可利用此漏洞绕过反射式XSS保护。在通过SQLXSSI发动攻击时，NoScript未能从受信任的域中检测到反射式XSS。通过利用浏览器中的错误信息机制发动Union SQL投毒攻击而导致的“Reflective XSS”可成功地绕过NoScript。 NoScript NoScript 2.0.5.1 NoScript NoScript 2.0.6 厂商补丁： NoScript...

The Hacker News•added 2010/11/30 2:23 a.m.•18 views

Professional Penetration Testing Guide

Here is the another good book in the field of penetration testing. Unlike other books which aims only at the technical aspects of Penetration testing, this one explains every step involved in the making of a Professional Pentester. Rather than just teaching how to use the existing tools, it does...

Packet Storm•added 2010/11/30 12:0 a.m.•24 views

DynPG 4.2.0 Local File Inclusion / Path Disclosure / SQL Injection

Vulnerability ID: HTB22703 Reference: http://www.htbridge.ch/advisory/lfiindynpg.html Product: DynPG Vendor: dynpg.org http://www.dynpg.org/ Vulnerable Version: 4.2.0 Vendor Notification: 16 November 2010 Vulnerability Type: Local File Inclusion Status: Fixed by Vendor Risk level: Medium Credit:...

exploitpack•added 2010/11/30 12:0 a.m.•10 views

DynPG 4.2.0 - Multiple Vulnerabilities

DynPG 4.2.0 - Multiple Vulnerabilities Vulnerability ID: HTB22703 Reference: http://www.htbridge.ch/advisory/lfiindynpg.html Product: DynPG Vendor: dynpg.org http://www.dynpg.org/ Vulnerable Version: 4.2.0 Vendor Notification: 16 November 2010 Vulnerability Type: Local File Inclusion Status: Fixe...

securityvulns•added 2010/11/28 12:0 a.m.•35 views

XSS vulnerability in Wolf CMS

Vulnerability ID: HTB22678 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinwolfcms.html Product: Wolf CMS Vendor: Wolf CMS team http://www.wolfcms.org/ Vulnerable Version: 0.6.0b and probably prior versions Vendor Notification: 09 November 2010 Vulnerability Type: Stored XSS Cross Si...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by