CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Openbugbounty•added 2018/02/25 1:19 p.m.•9 views

depinisyon.com XSS vulnerability

Open Bug Bounty ID: OBB-567930 Description| Value ---|--- Affected Website:| depinisyon.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

OpenVAS•added 2012/05/24 12:0 a.m.•21 views

PHP Address Book Multiple Cross Site Scripting Vulnerabilities

This host is running PHP Address Book and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: secpodphpaddressbookmultxssvuln.nasl 5950 2017-04-13 09:02:06Z teissa $ PHP Address Book Multiple Cross Site Scripting Vulnerabilities Authors: Sooraj KS Copyright:...

4.3CVSS6.4AI score0.01948EPSS

Exploits1References4

NVD•added 2012/05/21 6:55 p.m.•10 views

CVE-2012-2903

Multiple cross-site scripting XSS vulnerabilities in PHP Address Book 7.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO to group.php, or the 2 targetlanguage or 3 targetflag parameter to translate.php...

4.3CVSS5.8AI score0.01948EPSS

Exploits1References5

Prion•added 2012/05/21 6:55 p.m.•11 views

Cross site scripting

4.3CVSS6.1AI score0.01948EPSS

Exploits1References5Affected Software1

NVD•added 2012/01/29 11:55 a.m.•9 views

CVE-2011-5075

translate.php in Support Incident Tracker aka SiT! 3.45 through 3.65 allows remote attackers to obtain sensitive information via a direct request using the save action, which reveals the installation path...

5CVSS6.1AI score0.04467EPSS

Exploits1References4

ATTACKERKB•added 2012/01/29 11:55 a.m.•1 views

CVE-2011-5075

5CVSS5.5AI score0.04467EPSS

Exploits1References5

CVE•added 2012/01/29 11:0 a.m.•38 views

CVE-2011-5075

CVE-2011-5075 affects Support Incident Tracker SiT! versions 3.45–3.65. The flaw is an information-disclosure via translate.php (save action) that allows remote attackers to reveal the installation path. Connected sources corroborate an installation-path exposure; OpenVAS and RH advisories note b...

5CVSS6.3AI score0.04467EPSS

Exploits1References4Affected Software1

Cvelist•added 2012/01/29 11:0 a.m.•18 views

CVE-2011-4337

Static code injection vulnerability in translate.php in Support Incident Tracker aka SiT! 3.45 through 3.65 allows remote attackers to inject arbitrary PHP code into an executable language file in the i18n directory via the lang variable...

7.3AI score0.03089EPSS

Exploits1References4

NVD•added 2012/01/29 4:4 a.m.•6 views

CVE-2011-5070

Multiple cross-site scripting XSS vulnerabilities in Support Incident Tracker aka SiT! 3.65 allow remote attackers to inject arbitrary web script or HTML via 1 the file name to incidentattachments.php; 2 unspecified vectors in linkadd.php, possibly involving origref, linkref, linktype parameters,...

4.3CVSS5.9AI score0.01053EPSS

Exploits0References7

Prion•added 2012/01/29 4:4 a.m.•10 views

Cross site scripting

4.3CVSS6.2AI score0.01053EPSS

Exploits0References7Affected Software1

exploitpack•added 2011/11/19 12:0 a.m.•27 views

Support Incident Tracker 3.65 - translate.php Remote Code Execution

Support Incident Tracker 3.65 - translate.php Remote Code Execution ?php / ------------------------------------------------------------------------------ Support Incident Tracker = 3.65 translate.php Remote Code Execution Exploit...

0.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by