Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5303 matches found

Packet Storm
Packet Stormadded 2007/11/27 12:0 a.m.34 views

mps-insertion.txt

HSCMySpace Scripts - Poll Creator JavaScript Injection Vulnerability Our MySpace Poll Creator script is the ultimate addition to your MySpace resource site. The script enables your user to quickly and easily create a poll that they can post to profile or bulletin to all their friends. Everyone...

7.4AI score
Exploits0
Core Security
Core Securityadded 2007/11/27 12:0 a.m.43 views

Lotus Notes buffer overflow in the Lotus WorkSheet file processor

Advisory ID Internal CORE-2007-0821 Advisory Information Title: Lotus Notes buffer overflow in the Lotus WorkSheet file processor Advisory ID: CORE-2007-0821 Date published: 2007-11-27 Date of last update: 2007-11-27 Vendors contacted: IBM Corp. Release mode: COORDINATED RELEASE Vulnerability...

8.8CVSS7.3AI score0.06301EPSS
Exploits4
securityvulns
securityvulnsadded 2007/11/22 12:0 a.m.66 views

MySpace Scripts - Poll Creator JavaScript Injection Vulnerability

HSCMySpace Scripts - Poll Creator JavaScript Injection Vulnerability Our MySpace Poll Creator script is the ultimate addition to your MySpace resource site. The script enables your user to quickly and easily create a poll that they can post to profile or bulletin to all their friends. Everyone...

Exploits0
securityvulns
securityvulnsadded 2007/11/14 12:0 a.m.52 views

iDefense Security Advisory 11.12.07: Novell NetWare Client Local Privilege Escalation Vulnerability

iDefense Security Advisory 11.12.07 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 12, 2007 I. BACKGROUND The Novell Client software provides a workstation with access to Novell NetWare networks as well as Novell Open Enterprise Server OES services. Novell Clients can access the full...

7.2CVSS0.6AI score0.00366EPSS
Exploits1
Packet Storm
Packet Stormadded 2007/11/13 12:0 a.m.34 views

eggblog-xss.txt

H - Security Labs Eggblog v3.1.0 Security Advisory ID : HSEC20071111 General Information -------------------------- Name : EggBlog v.3.1.0 Vendor HomePage :http://sourceforge.net/projects/eggblog/ Platforms : PHP && MySQL Vulnerability Type : Input Validation Error Timeline...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/11/12 12:0 a.m.52 views

Eggblog v3.1.0 XSS Vulnerability

H - Security Labs Eggblog v3.1.0 Security Advisory ID : HSEC20071111 General Information -------------------------- Name : EggBlog v.3.1.0 Vendor HomePage :http://sourceforge.net/projects/eggblog/ Platforms : PHP && MySQL Vulnerability Type : Input Validation Error Timeline...

6.5AI score
Exploits0
Packet Storm
Packet Stormadded 2007/10/29 12:0 a.m.38 views

smartshop-xss.txt

HSC Smart-Shop Shopping Cart Cross-Site Scripting Vulrnability SMART-SHOP shopping cart software is a all-in-one hosted e-commerce solution that creates and helps you maintain your online store fast, easy, and cost-effective. Many people using this software must be warned that there are holes in...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2007/10/29 12:0 a.m.38 views

omnistar-xss.txt

HSC Omnistar Live Software Cross-Site Scripting Vulrnability Omnistar Live is web based PHP help desk software used by webmasters that combines live chat and helpdesk software in one easy to use solution. Our customer service software combines ticketed support web and email based, live chat and a...

7.4AI score
Exploits0
FreeBSD
FreeBSDadded 2007/10/25 12:0 a.m.32 views

linux-realplayer -- multiple vulnerabilities

Secunia reports: Multiple vulnerabilities have been reported in RealPlayer/RealOne/HelixPlayer, which can be exploited by malicious people to compromise a user's system. An input validation error when processing .RA/.RAM files can be exploited to cause a heap corruption via a specially crafted...

9.3CVSS8AI score0.36069EPSS
Exploits6References6
securityvulns
securityvulnsadded 2007/10/24 12:0 a.m.47 views

Novell OpenSUSE SWAMP multiple XSS

Vendor Site: http://en.opensuse.org/Swamp Version affected: ??? Demo:http://swampdemo.suse.de/webswamp/swamp/template/Index.vm Class: Input Validation Error Overview:OpenSUSE Workflow Administration and Management Platform login page fails to sufficiently sanitize user-supplied input data via log...

1.7AI score
Exploits0
Packet Storm
Packet Stormadded 2007/10/10 12:0 a.m.29 views

dnewsweb-xss.txt

HSC DNewsWeb Softwares Cross Site Scripting Vulrnability The DNews News Server is advanced news server software that makes it easy for you to provide users with fast access to Internet Usenet news groups. Installing your own l ocal news server software also gives you complete control to create yo...

Exploits0
securityvulns
securityvulnsadded 2007/10/02 12:0 a.m.100 views

eGov Content Manager Cross Site Scripting Vulrnability

HSC eGov Content Manager Cross Site Scripting Vulrnability The eGov Manager was designed to simplify the efforts of government staffers who are responsible for posting public documents, news updates, events, managing staff directories and online services. This issue is due to a failure in the...

0.7AI score
Exploits0
Packet Storm
Packet Stormadded 2007/09/21 12:0 a.m.24 views

webbatch-xss.txt

HSC WebBatch Applications Cross Site Scripting Vulrnability This issue is due to a failure in the application to properly sanitize user-supplied input. Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2007/09/05 12:0 a.m.29 views

tomcat4131-xss.txt

Apache Tomcat/4.1.31 ships with built in examples. One of the example calendar.jsp suffers from input validation error and could be exploited for cross site scriptingand cross site request forgery. XSS http://myserver:myport/examples/jsp/cal/cal2.jsp?time=8am%3cscript%3ealert"XSS!"%3c%2fscript%3e...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/09/04 12:0 a.m.72 views

Apache tomcat calendar example cross site scripting and cross site request forgery vulnerability

Apache Tomcat/4.1.31 ships with built in examples. One of the example calendar.jsp suffers from input validation error and could be exploited for cross site scriptingand cross site request forgery. XSS http://myserver:myport/examples/jsp/cal/cal2.jsp?time=8am3cscript3eale rt"XSS!"3c2fscript3e XSR...

Exploits0
Packet Storm
Packet Stormadded 2007/08/31 12:0 a.m.19 views

chacha-xss.txt

ChaCha.com Search ?query= Cross-Site Scripting Vulnerability + Author: d3hydr8 + Contact: d3hydr8atgmaildotcom + Original Post: http://darkcode.h1x.com/forum/index.php?action=vthread&forum=12&topic=275 + Vendor Site: http://www.chacha.com/ + Class: Input Validation Error + Overview: The first...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/08/28 12:0 a.m.41 views

InterWorx-CP Multiple HTML Injections Vulnerabilitie

HSC InterWorx-CP Multiple HTMl Injection Vulnerabilities The InterWorx Hosting Control Panel InterWorx-CP is a dedicated server control panel. InterWorx suffers from multiple HTMl injection vulnerabilities. JavaScript and Cross site scripting are just few found vulns, more sophisticated attacks...

0.9AI score
Exploits0
Packet Storm
Packet Stormadded 2007/08/28 12:0 a.m.31 views

interworx-xss.txt

HSC InterWorx-CP Multiple HTMl Injection Vulnerabilities The InterWorx Hosting Control Panel InterWorx-CP is a dedicated server control panel. InterWorx suffers from multiple HTMl injection vulnerabilities. JavaScript and Cross site scripting are just few found vulns, more sophisticated attacks...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/08/28 12:0 a.m.57 views

Abledesign Dynamic Picture Frame XSS

Vendor Site: http://abledesign.com/ Version affected: ??? Demo: http://abledesign.com/demo/pframe.php Class: Input Validation Error Overview: Dynamic Picture Frame is a PHP script which allows you to add a variety of picture frames of any size to images on your website. Dynamic Picture Frame fail...

0.4AI score
Exploits0
securityvulns
securityvulnsadded 2007/08/21 12:0 a.m.56 views

Invision Power Board D22-Shoutbox HTML Injections

HSC Invision Power Board D22-Shoutbox HTML Injections D22-Shoutbox suffers from improper validation of HTMl tags filtration. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the...

1.5AI score
Exploits0
Rows per page
Query Builder