CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

Veracode•added 2025/10/21 7:58 p.m.•6 views

Improper Authentication

github.com/spectolabs/hoverfly is vulnerable to Improper Authentication. The vulnerability is due to the admin WebSocket endpoint /api/v2/ws/logs not being protected by the same authentication middleware as the REST admin API, which allows an unauthenticated remote attacker to access and stream...

8.8CVSS7.3AI score0.00155EPSS

Exploits1References3Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2005-1172

Malware in sbrugna...

7.5CVSS6.4AI score0.00717EPSS

Exploits0References4

seebug.org•added 2014/07/01 12:0 a.m.•17 views

deluxebb <= 1.3 - Multiple Vulnerabilities

No description provided by source. Author: cp77fk4r | Empty0pagEShift+2gmail.comhttp://gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•23 views

nabopoll 1.2 - Remote Unprotected Admin Section Vulnerability

No description provided by source. nabopoll 1.1.2 sensitive file admin without password By : sn0oPy Risk : high site : http://nabocorp.com/ Dork : inurl:nabopoll/ exploit : acces without password to : http://target/nabopoll/admin/configedit.php http://target/nabopoll/admin/templateedit.php...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

dl_stats Multiple Vulnerabilities

7.1AI score

Exploits0

Packet Storm•added 2010/04/19 12:0 a.m.•57 views

DL_Stats Cross Site Scripting / Admin Bypass / SQL Injection

Exploit Title: dlstats Multiple Vulnerabilities Date: 18.04.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats Multiple...

0.3AI score

Exploits0

Exploit DB•added 2010/04/18 12:0 a.m.•27 views

dl_stats - Multiple Vulnerabilities

:::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats Multiple Vulnerabilitie |:: Author = Valentin Hoebel |:: Contact = [email protected] |:: |:: :::::::::::::::::::::::::::::::::::::: 0x2...

7.4AI score

Exploits0

0day.today•added 2010/04/18 12:0 a.m.•13 views

dl_stats Multiple Vulnerabilities

Exploit for php platform in category web applications ================================= dlstats Multiple Vulnerabilities ================================= :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: |:: General Information |:: Advisory/Exploit Title = dlstats...

7.1AI score

Exploits0

exploitpack•added 2010/04/18 12:0 a.m.•14 views

dl_stats - Multiple Vulnerabilities

0.3AI score

Exploits0

seebug.org•added 2010/01/06 12:0 a.m.•35 views

DeluxeBB存在多个安全漏洞

Bugraq ID: 37448 CVE ID：CVE-2009-4465 CVE-2009-4466 CVE-2009-4467 CVE-2009-4468 DeluxeBB是一款基于PHP的论坛程序。 DeluxeBB存在多个输入验证问题，远程攻击者可以利用漏洞进行跨站脚本，验证绕过和安全绕过等攻击。具体漏洞如下： -部分管理控制面板文件不受访问保护。 -部分日志文件不受访问保护。 -在用户注册过程之后，简单的发送特殊链接，可绕过邮件注册校验。 -通过访问邮件列表字段的末页获得USERID -存在路径泄漏问题。 DeluxeBB = 1.3 目前没有解决方案提供：...

7.5CVSS6.4AI score0.03313EPSS

Exploits5

exploitpack•added 2009/12/22 12:0 a.m.•21 views

DeluxeBB 1.3 - Multiple Vulnerabilities

DeluxeBB 1.3 - Multiple Vulnerabilities Author: cp77fk4r | Empty0pagEShift+2gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang...

7.6AI score

Exploits0

0day.today•added 2009/12/22 12:0 a.m.•16 views

DeluxeBB <= 1.3 Multiple Vulnerabilities

Exploit for unknown platform in category web applications ======================================== DeluxeBB = 1.3 Multiple Vulnerabilities ======================================== Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/...

7.1AI score

Exploits0

Exploit DB•added 2009/12/22 12:0 a.m.•25 views

DeluxeBB 1.3 - Multiple Vulnerabilities

Author: cp77fk4r | Empty0pagEShift+2gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang http://server/settings/ Cross Site Scripting...

7AI score

Exploits0

exploitpack•added 2009/05/07 12:0 a.m.•24 views

ST-Gallery 0.1a - Multiple SQL Injections

ST-Gallery 0.1a - Multiple SQL Injections || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ Â¡VIVA SPAIN!...Â¡GANAREMOS EL MUNDIAL!...o.O Â¡PROUD TO BE SPANISH!...

0.2AI score

Exploits0

securityvulns•added 2007/02/15 12:0 a.m.•415 views

nabopoll 1.2 Remote Unprotected Admin Section Vulnerability

By Cr@zyKing [email protected] Thakns : ApAci & Erne & Uyussman & Eno7 & Thehacker & CrackersChild Script : nabopoll 1.1.2 Risk : Remote Add Admin Exploit |High Site : http://nabocorp.com/ Google Dork : inurl:"nabopoll/" Exploit : http://target.com/nabopoll/admin/configedit.php Mysql Config For...

0.7AI score

Exploits0

0day.today•added 2007/02/13 12:0 a.m.•33 views

nabopoll 1.2 Remote Unprotected Admin Section Vulnerability

Exploit for unknown platform in category web applications =========================================================== nabopoll 1.2 Remote Unprotected Admin Section Vulnerability =========================================================== nabopoll 1.1.2 sensitive file admin without password By :...

7.1AI score

Exploits0

securityvulns•added 2001/05/23 12:0 a.m.•46 views

Дырка в Spy Anywhere (unprotected admin access)

Используя парль из одного символа можно подключиться с привилегиями администратора...

1.6AI score

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by