CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

0day.today•added 2020/03/23 12:0 a.m.•291 views

Horde 5.2.22 CSV Import Code Execution Exploit

The HordeData module version 2.1.4 and before present in Horde Groupware version 5.2.22 allows authenticated users to inject arbitrary PHP code thus achieving remote code execution the server hosting the web application. This module requires Metasploit: https://metasploit.com/download Current...

9.8CVSS0.4AI score0.71135EPSS

Exploits5

seebug.org•added 2014/07/01 12:0 a.m.•11 views

MagpieRSS 0.72 Cross Site Scripting And HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/34891/info MagpieRSS is prone to multiple cross-site scripting issues and an HTML-injection issue because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by