CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-2118

Malware in sbrugna...

4.3CVSS6.4AI score0.00558EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-6374

Malware in sbrugna...

4.3CVSS6.4AI score0.00255EPSS

Exploits1References4

NVD•added 2009/03/06 11:30 a.m.•9 views

CVE-2008-6404

Cross-site scripting XSS vulnerability in addcalendars.php in eXtrovert Software Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the callback parameter...

4.3CVSS5.7AI score0.00255EPSS

Exploits1References3

Prion•added 2009/03/06 11:30 a.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in addcalendars.php in eXtrovert Software Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the callback parameter...

4.3CVSS6.1AI score0.00255EPSS

Exploits1References3Affected Software1

CVE•added 2009/03/06 11:0 a.m.•46 views

CVE-2008-6404

CVE-2008-6404 is a documented cross-site scripting (XSS) vulnerability in add_calendars.php of eXtrovert Software Thyme 1.3, exploitable via the callback parameter. Multiple sources (NVD, CVE listings) corroborate that remote attackers can inject arbitrary web script or HTML. The NVD entry assign...

4.3CVSS5.9AI score0.00255EPSS

Exploits1References3Affected Software1

Cvelist•added 2009/03/06 11:0 a.m.•14 views

CVE-2008-6404

Cross-site scripting XSS vulnerability in addcalendars.php in eXtrovert Software Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the callback parameter...

5.7AI score0.00255EPSS

Exploits1References3

Prion•added 2009/02/11 8:30 p.m.•9 views

Directory traversal

Directory traversal vulnerability in export.php in Thyme 1.3 and earlier, when registerglobals is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the exportto parameter...

7.5CVSS7.2AI score0.02898EPSS

Exploits0References1Affected Software1

Cvelist•added 2009/02/11 8:0 p.m.•13 views

CVE-2009-0535

6.7AI score0.02898EPSS

Exploits0References1

Packet Storm•added 2009/02/10 12:0 a.m.•24 views

Thyme 1.3 Local File Inclusion

| Theme Local File Inclusion / Registerglobals: off | | Version: = 1.3 | | Dork: Thyme 1. © 2006 eXtrovert Software LLC. All rights reserved | | Founded by: cheverokatgmail.com | -------------------------------------------------------------------------------------- Intro: See info...

0.1AI score

Exploits0

exploitpack•added 2009/02/10 12:0 a.m.•13 views

Thyme 1.3 - export_to Local File Inclusion

0.1AI score

Exploits0

Prion•added 2008/10/07 12:31 a.m.•9 views

Sql injection

SQL injection vulnerability in pickusers.php in the groups module in eXtrovert Thyme 1.3 allows remote attackers to execute arbitrary SQL commands via the unamesearch parameter. NOTE: some of these details are obtained from third party information...

7.5CVSS9AI score0.00301EPSS

Exploits1References4Affected Software1

Cvelist•added 2008/10/07 12:0 a.m.•12 views

CVE-2008-4459

8.3AI score0.00301EPSS

Exploits1References4

CVE•added 2008/10/07 12:0 a.m.•38 views

CVE-2008-4459

The CVE-2008-4459 entry concerns the web app component eXtrovert Thyme 1.3 , specifically the pick_users.php (groups module) . It describes a SQL injection vulnerability exploitable via the uname_search parameter that could allow remote attackers to execute arbitrary SQL commands. The vulnerabili...

7.5CVSS8.4AI score0.00301EPSS

Exploits1References4Affected Software1

Exploit DB•added 2008/09/08 12:0 a.m.•30 views

eXtrovert software Thyme 1.3 - 'pick_users.php' SQL Injection

source: https://www.securityfocus.com/bid/31063/info eXtrovert software Thyme is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, acces...

7.4AI score

Exploits0

Packet Storm•added 2006/05/02 12:0 a.m.•20 views

thyme13.txt

---------------------------------------------------------- Aria-Security.net Advisory Discovered by: O.U.T.L.A.W Gr33t to: A.u.r.a & R@1D3N & Smok3r ----------------------------------------------------------- » Software: Thyme 1.3 » Link: http://www.extrosoft.com/products/thyme/demo/index.php »...

7.4AI score

Exploits0

NVD•added 2006/05/01 9:6 p.m.•10 views

CVE-2006-2117

Cross-site scripting XSS vulnerability in Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the search page...

4.3CVSS5.7AI score0.00558EPSS

Exploits0References8

Prion•added 2006/05/01 9:6 p.m.•10 views

Cross site scripting

Cross-site scripting XSS vulnerability in Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the search page...

4.3CVSS6.1AI score0.00558EPSS

Exploits0References8Affected Software1

Cvelist•added 2006/05/01 9:0 p.m.•15 views

CVE-2006-2117

Cross-site scripting XSS vulnerability in Thyme 1.3 allows remote attackers to inject arbitrary web script or HTML via the search page...

5.7AI score0.00558EPSS

Exploits0References8

CVE•added 2006/05/01 9:0 p.m.•37 views

CVE-2006-2117

CVE-2006-2117 affects Thyme 1.3 with a cross-site scripting (XSS) vulnerability exposed via the search page. The NVD entry confirms an XSS issue allowing remote script/HTML injection; no details on affected versions beyond Thyme 1.3 are provided in the connected documents. There is no explicit re...

4.3CVSS5.7AI score0.00558EPSS

Exploits0References8Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by