Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/05/11 8:35 p.m.9 views

CVE-2026-43878 WWBN AVideo: Reflected XSS in plugin/Meet/iframe.php via Unescaped `user`/`pass` Parameters Reflected into JavaScript String Literal

WWBN AVideo is an open source video platform. In versions up to and including 29.0, plugin/Meet/iframe.php echoes the attacker-controlled user and pass query parameters unescaped into a JavaScript double-quoted string literal inside a block. An attacker who sends a victim to a crafted URL can bre...

6.1CVSS6AI score0.00225EPSS
Exploits0References2
0day.today
0day.today
added 2010/01/06 12:0 a.m.553 views

VP-ASP Shopping Cart 7.0 DB Download Vulnerability

Exploit for asp platform in category web applications ================================================== VP-ASP Shopping Cart 7.0 DB Download Vulnerability ================================================== ======================================================================================== |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/12/30 12:0 a.m.38 views

TomatoCart Backup Disclosure

======================================================================================== | Title : TomatoCart Backup Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | EDB-ID : | | CVE-ID : | |...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/07/27 12:0 a.m.15 views

Allomani Songs Clips 2.7.0 - Blind SQL Injection

Allomani Songs Clips 2.7.0 - Blind SQL Injection ?php iniset"maxexecutiontime",0; printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Allomani Songs & Clips v2.7.0 /QQQ/\QQQ\ Blind SQL inj. exploit /QQQQQ/ \QQQQQQ\ q GET 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q http://allomani.com...

0.4AI score
Exploits0
Rows per page
Query Builder