Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CVE
CVEadded 2015/09/01 2:0 p.m.82 views

CVE-2015-2807

The CVE-2015-2807 issue affects the WordPress Navis DocumentCloud plugin, specifically versions before 0.1.1. The vulnerability resides in the js/window.php file where the wpbase parameter is used, enabling a reflected cross-site scripting (XSS) attack. An attacker can inject arbitrary script/HTM...

4.3CVSS5.9AI score0.0689EPSS
Exploits3References5Affected Software1
0day.today
0day.todayadded 2015/09/01 12:0 a.m.19 views

WordPress sourceAFRICA 0.1.3 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title : Wordpress sourceAFRICA Plugin Cross Site Scripting Exploit Author : Ashiyane Digital Security Team Vendor Homepage : https://wordpress.org/plugins/sourceafrica/ Date: 2015-08-29 Tested On : Elementary Os - Firefox Software Link...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2015/08/29 12:0 a.m.23 views

WordPress sourceAFRICA 0.1.3 Cross Site Scripting

Exploit Title : Wordpress sourceAFRICA Plugin Cross Site Scripting Exploit Author : Ashiyane Digital Security Team Vendor Homepage : https://wordpress.org/plugins/sourceafrica/ Date: 2015-08-29 Tested On : Elementary Os - Firefox Software Link :...

7.4AI score
Exploits0
Patchstack
Patchstackadded 2015/03/31 12:0 a.m.16 views

WordPress Navis DocumentCloud Plugin <= 0.1.0 - XSS

This vulnerability is in js/window.php. It allows an attacker to inject arbitrary web script or HTML via the "wpbase" parameter. Solution Update the plugin...

4.3CVSS1.9AI score0.0689EPSS
Exploits3References1Affected Software1
Patchstack
Patchstackadded 2014/06/23 12:0 a.m.12 views

WordPress Wikipop Plugin <= 2.0 - XSS

Because of this vulnerability in js/window.php, the attackers can inject arbitrary web script or HTML via the "s" parameter. Solution Update the plugin...

4.3CVSS2.7AI score0.00174EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2006/10/02 8:0 p.m.13 views

CVE-2006-5125

Directory traversal vulnerability in window.php, possibly used by home.php, in Joshua Muheim phpMyWebmin 1.0 allows remote attackers to obtain sensitive information via a directory name in the target parameter, which triggers a directory listing through the opendir function...

6.2AI score0.25021EPSS
Exploits1References6
CVE
CVEadded 2006/10/02 8:0 p.m.31 views

CVE-2006-5125

CVE-2006-5125 describes a directory traversal vulnerability in Joshua Muheim’s phpMyWebmin 1.0, where window.php (potentially used by home.php) accepts a directory name via the target parameter and triggers a directory listing through opendir. This allows remote attackers to obtain sensitive info...

5CVSS6.6AI score0.25021EPSS
Exploits1References6Affected Software1
seebug.org
seebug.orgadded 2006/09/28 12:0 a.m.18 views

phpMyWebmin 1.0 (window.php) Remote File Include Vulnerability

No description provided by source. +PHP MyWebMin 1.0 Remote File Include +Advisory 5 +Product :PHP MyWebMin +Develop: +www.josh.ch/joshch/php-tools/phpmywebmin,download.html +Vulnerable: Remote File Includes +Risk:High +Class:Remote +Discovered:by Kernel-32 +Contact: [email protected]...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2006/09/28 12:0 a.m.32 views

phpMyWebmin 1.0 - &#039;window.php&#039; Remote File Inclusion

+PHP MyWebMin 1.0 Remote File Include +Advisory 5 +Product :PHP MyWebMin +Develop: +www.josh.ch/joshch/php-tools/phpmywebmin,download.html +Vulnerable: Remote File Includes +Risk:High +Class:Remote +Discovered:by Kernel-32 +Contact: [email protected] +Homepage: http://kernel-32.blogspot.com...

7AI score
Exploits0
Rows per page
Query Builder