CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 5:43 a.m.•1 views

SUSE CVE-2012-6121

Cross-site scripting XSS vulnerability in Roundcube Webmail before 0.8.5 allows remote attackers to inject arbitrary web script or HTML via a 1 data:text or 2 vbscript link...

4.3CVSS5.7AI score0.00407EPSS

Exploits0References3

Packet Storm•added 2017/09/07 12:0 a.m.•32 views

Pay Banner Text Link Ad 1.0.6.1 Cross Site Request Forgery

Exploit Title: Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery Update Admin User&Pass Dork: N/A Date: 06.09.2017 Vendor Homepage: http://www.dijiteol.com/ Software Link: http://www.dijiteol.com/p-Pay-Banner-Textlink-Ad-Pay-Banner-Advertisement-PHP-Script-i-1.html Demo:...

Packet Storm•added 2017/09/07 12:0 a.m.•26 views

Pay Banner Text Link Ad 1.0.6.1 SQL Injection

Exploit Title: Pay Banner Text Link Ad 1.0.6.1 - SQL Injection Dork: N/A Date: 06.09.2017 Vendor Homepage: http://www.dijiteol.com/ Software Link: http://www.dijiteol.com/p-Pay-Banner-Textlink-Ad-Pay-Banner-Advertisement-PHP-Script-i-1.html Demo: http://dijiteol.com/demos/pbtla Version: 1.0.6.1...

exploitpack•added 2017/09/06 12:0 a.m.•11 views

Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery (Update Admin)

Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery Update Admin Exploit Title: Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery Update Admin User&Pass Dork: N/A Date: 06.09.2017 Vendor Homepage: http://www.dijiteol.com/ Software Link:...

0day.today•added 2017/09/06 12:0 a.m.•20 views

Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery (Update Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery Update Admin User&Pass Dork: N/A Date: 06.09.2017 Vendor Homepage: http://www.dijiteol.com/ Software Link:...

7.1AI score

Exploit DB•added 2017/09/06 12:0 a.m.•28 views

Pay Banner Text Link Ad 1.0.6.1 - SQL Injection

Exploit DB•added 2017/09/06 12:0 a.m.•33 views

Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery (Update Admin)

Atlassian•added 2015/12/07 7:52 p.m.•17 views

User Picker Custom field HTML tags showing when creating new issues

h3. Summary Customer reported that when creating custom field User Picker and added html tags in description field, text link shows correctly in Custom Field screen under Administration Setting. However when creating new issues, the create issue form for User Picker field shows the HTML code not...

7.1AI score

Drupal•added 2015/02/25 12:0 a.m.•13 views

SA-CONTRIB-2015-056 - inLinks Integration - Cross Site Scripting (XSS) - Unsupported

inLinks Integration module enables you to use inLinks product from Text Link Ads third-party service. The module doesn't sufficiently sanitize user input in some path arguments, thereby exposing a Cross Site Scripting vulnerability. CVE identifiers issued CVE-2015-4347 Versions affected All...

4.3CVSS6AI score0.00296EPSS

Exploits0References8

seebug.org•added 2014/07/01 12:0 a.m.•15 views

Text Exchange Pro (index.php page) Local File Inclusion

No description provided by source. ----------------------------------------------------------- Text Exchange Pro index.php page Local file inclusion Bug discovered by Yakir Wizman Date 24/08/2012 Vendor Homepage - http://www.phpwebscripts.com/text-exchange-pro/ Demo -...

7.1AI score

Exploit DB•added 2012/08/24 12:0 a.m.•30 views

Text Exchange Pro - 'index.php' Local File Inclusion

----------------------------------------------------------- Text Exchange Pro index.php page Local file inclusion Bug discovered by Yakir Wizman Date 24/08/2012 Vendor Homepage - http://www.phpwebscripts.com/text-exchange-pro/ Demo - http://www.scripts-demo.com/textexchangepro/ ISRAEL...

CVE•added 2009/08/13 4:0 p.m.•32 views

CVE-2008-6963

CVE-2008-6963 affects TurnkeyForms Text Link Sales (admin.php). The vulnerability allows remote attackers to bypass authentication and gain administrative privileges through a direct request. Documents describe the flaw and its impact but do not provide a patch version, workaround, or explicit re...

7.5CVSS7.3AI score0.01661EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/08/13 4:0 p.m.•13 views

CVE-2008-6963

admin.php in TurnkeyForms Text Link Sales allows remote attackers to bypass authentication and gain administrative privileges via a direct request...

7.1AI score0.01661EPSS

Exploits1References4

NVD•added 2008/12/12 4:30 p.m.•11 views

CVE-2008-5486

SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.00421EPSS

Prion•added 2008/12/12 4:30 p.m.•6 views

Sql injection

SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.00421EPSS

NVD•added 2008/12/12 4:30 p.m.•9 views

CVE-2008-5487

Cross-site scripting XSS vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.7AI score0.03183EPSS

Prion•added 2008/12/12 4:30 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS6.1AI score0.03183EPSS

Cvelist•added 2008/12/12 4:0 p.m.•14 views

CVE-2008-5487

Cross-site scripting XSS vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to inject arbitrary web script or HTML via the id parameter...

5.7AI score0.03183EPSS