CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

26 matches found

CVE•added 2025/12/10 5:15 p.m.•29 views

CVE-2025-13607

CVE-2025-13607 affects D-Link CCTV camera model DCS-F5614-L1 and related entries, describing unauthenticated access to camera configuration data (including account credentials) via a vulnerable URL. Connected sources consistently state missing authentication as the root cause; several enrichments...

9.4CVSS6.5AI score0.00044EPSS

Exploits0References3

Packet Storm•added 2021/08/30 12:0 a.m.•449 views

Ship Ferry Ticket Reservation System 1.0 SQL Injection

Exploit Title: Ship Ferry Ticket Reservation System v1.0 SQL-Injection-Bypass-Authentication in /shipticketing/classes/Login.php. Author: nu11secur1ty Testing and Debugging: nu11secur1ty Date: 08.30.2021 Vendor:...

Hacker One•added 2018/09/12 9:51 p.m.•22 views

U.S. Dept Of Defense: Cross Site Scripting (XSS) – Reflected

Reflected Cross-site Scripting XSS occur when an attacker injects browser executable code within a single HTTP response.When a web application is vulnerable to this type of attack, it will pass unvalidated input sent through requests back to the client. The value of request parameter is copied in...

exploitpack•added 2016/10/13 12:0 a.m.•17 views

Colorful Blog - Persistent Cross-Site Scripting

Colorful Blog - Persistent Cross-Site Scripting Exploit Title : ----------- : Colorful Blog - Stored Cross Site Scripting Author : ----------------- : Besim Google Dork : --------- : - Date : -------------------- : 13/10/2016 Type : -------------------- : webapps Platform : --------------- : PHP...

Exploit DB•added 2016/10/13 12:0 a.m.•14 views

Colorful Blog - Persistent Cross-Site Scripting

Exploit Title : ----------- : Colorful Blog - Stored Cross Site Scripting Author : ----------------- : Besim Google Dork : --------- : - Date : -------------------- : 13/10/2016 Type : -------------------- : webapps Platform : --------------- : PHP Vendor Homepage :-- : - Software link : --------...

exploitpack•added 2016/10/11 12:0 a.m.•15 views

ApPHP MicroBlog 1.0.2 - Persistent Cross-Site Scripting

ApPHP MicroBlog 1.0.2 - Persistent Cross-Site Scripting Exploit Title : ApPHP MicroBlog 1.0.2 - Stored Cross Site Scripting Author : Besim Google Dork : Date : 12/10/2016 Type : webapps Platform : PHP Vendor Homepage : - Software link : http://www.scriptdungeon.com/jump.php?ScriptID=9162...

Packet Storm•added 2016/10/09 12:0 a.m.•19 views

PHP Press Release Cross Site Scripting

Exploit Title : PHP Press Release - Stored Cross Site Scripting Author : Besim Google Dork : - Date : 09/10/2016 Type : webapps Platform : PHP Vendor Homepage : http://www.pagereactions.com/product.php?pku=1 Software link : http://www.pagereactions.com/downloads/phppressrelease.zip Description :...

Hacker One•added 2016/09/28 11:6 a.m.•15 views

Ian Dunn: Google Authenticator0.6 - PHP Version Dosclosure

Hello Vulnerable File and Link : http://localhost/wordpress/wp-content/plugins/google-authenticator-per-user-prompt/views/requirements-error.php Vulnerable Link : 8 You're running version Vulnerable Code: Good Luck/...

Hacker One•added 2016/03/14 9:20 p.m.•22 views

New Relic: Vulnerable Link Leaks the User Names

Hello, Vulnerable Link: https://rpm.newrelic.com/accounts/XXXXXX/setup POC: Login to the Account. Visit the Above Link. Now, Log Out! Visit that Link Again. Here you go!!! "Display Name" is leaking in front, and the "first name" and "last name" is leaking on the right side bar. Thanks! regards,...

Hacker One•added 2015/01/17 2:57 p.m.•17 views

Vimeo: Open Redirection Security Filter bypassed

Hi, The application is vulnerable to Open Redirection using a basic filter bypass which it was using for security against open redirection. Here is the vulnerable link: https://vimeo.com/tools/edit?image=http://securityidiots.com?vimeocdn.com/.png Weakness in filter against Open Redirect.: Actual...

seebug.org•added 2014/07/01 12:0 a.m.•29 views

Zimplit CMS 3.0 - Multiple Vulnerabilities

No description provided by source. Exploit Title: Zimplit CMS multiple vulnerabilities Date: 2013 13 September Exploit Author: Yashar shahinzadeh Special thanks to Mormoroth Credit goes for: http://y-shahinzadeh.ir & ha.cker.ir Vendor Homepage: www.zimplit.com Tested on: Linux & Windows, PHP 5.3....

Hacker One•added 2014/05/10 6:38 a.m.•22 views

Hubdia: Subscribe User bug

Hi Hubdia, i found a bug in your subscribe page https://hubdia.com/ which this bug can subscribe multiple emails. Vulnerable Link: https://hubdia.com/ Proof of Concept: 1. use Live HTTP Headers firefox addon 2. change the email see in attached photo 3. submit the request in many times Thanks,...

Hacker One•added 2014/04/21 8:39 a.m.•58 views

Mail.ru: rs.mail.ru - Flash Based XSS

Hi, I found a flash based XSS in rs.mail.ru. Vulnerable link: http://rs.mail.ru/b27161485.swf?link1=javascript:alertdocument.domain Just click on the page and you will see the alert. Tested on Mozilla Firefox Regards, Florin...

Hacker One•added 2014/04/06 11:1 a.m.•54 views

Slack: open redirect in https://slack.com

Navigate to Https://slack.com append "/link?url=url=http://bing.com" or enter any website of your choice with http:// vulnerable link https://slack.com/link?url=http://bing.com notice that user is redirected to bing.com without being validated or notified...

0day.today•added 2012/07/06 12:0 a.m.•45 views

Wordpress Plugins - SocialFit XSS Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

The Hacker News•added 2012/03/12 7:57 a.m.•8 views

Kevin Mitnick's website open to Cross-Site Scripting ( XSS ) vulnerability

Kevin Mitnick's website open to Cross-Site Scripting XSS vulnerability Cross-Site Scripting XSS vulnerability discovered in official website of Kevin Mitnick one of the most talented hackers, and the one one most prosecuted by the state. Mitnick's hacker handle was "Condor". He became the first...

Packet Storm•added 2012/01/10 12:0 a.m.•15 views

W-CMS 2.01 Cross Site Scripting / Directory Traversal

Exploit Title: W-Cms Multiple Vulnerability Date: 2012-01-09 Author: th3.g4m30v3r Site:http://w-cms.info/ Software Link: http://code.google.com/p/wcms/ Dork: intext:"Powered by w-CMS" Version : 2.01 Tested on: Window 7 Yogesh Kashyap, shubneet goel, w4rl0ck.d0wn, Chip, VzAcnY, Razzy, Sayan, Jaggi...

Packet Storm•added 2012/01/10 12:0 a.m.•26 views

Searchsecurity.techtarget.com Cross Site Scripting

WhiteHatZone Vulnerable : http://searchsecurity.techtarget.com/ Script : alert'XSS found by Girish Shrimali'; Vulnerable link : http://searchsecurity.techtarget.com/search/query?start=0&filter=1&q=%3Cscript%3Ealert%28%27XSS+found+by+Girish+Shrimali%27%29%3B%3C%2Fscript%3E Greetz : Vidit Baxi, Sum...

The Hacker News•added 2011/08/29 10:38 a.m.•7 views

XSS Vulnerability in MSN.com

XSS Vulnerability in MSN.com XSS Vulnerability Cross Site Scripting in MSN discovered by TeamDX . Vulnerable Link%20;%3C/script%3E is also shown in image. Last week One of the Security Researcher "Juan Sacco runlvl" - Insecurity Research Labs expose the Cross Site vulnerability XSS in Bing.com...

The Hacker News•added 2011/06/24 1:31 p.m.•9 views

PBS (Public Broadcasting Service) & Writerspace Hacked Again by Warv0x (AKA Kaihoe)

PBS Public Broadcasting Service & Writerspace Hacked Again by Warv0x AKA Kaihoe Yes ! Its True that PBS Public Broadcasting Service Hacked once again .Last time, A month before Public Broadcasting Service PBS Hacked by Lulzsec and Users data ,Database was Leaked and then Lulzsec claim that PSB.or...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by