CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple cross-site scripting XSS vulnerabilities in default.asp in WmsCms 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 search, 2 sbr, 3 p, and 4 sbl parameters, different vectors than CVE-2007-3137...

4.3CVSS5.8AI score0.05687EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 4:32 a.m.•6 views

CVE-2010-2317

Multiple SQL injection vulnerabilities in WmsCms 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 search, 2 sbr, 3 pid, 4 sbl, and 5 FilePath parameters to default.asp; and the 6 sbr, 7 pr, and 8 psPrice parameters to printpage.asp...

7.5CVSS9AI score0.00105EPSS

Exploits1References1

seebug.org•added 2014/07/01 12:0 a.m.•11 views

WMSCMS 2.0 - Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/24365/info WmsCMS is prone to multiple cross-site scripting vulnerabilities because it fails to adequately sanitize user-supplied input data before rendering it in a user's browser. Attackers could exploit these issues to...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•7 views

WmsCMS - XSS, SQL injection vulnerability

No description provided by source. Title: XSS, SQL injection vulnerability in WmsCMS EDB-ID: CVE: OSVDB-ID: Author: Ariko-Security Published: 2010-06-05 ============ Ariko-Security - Advisory 1/6/2010 ============= XSS, SQL injection vulnerability in WMSCMS 2007 Secunia Advisory SA25583 only XSS ...

7.1AI score

Exploits0

NVD•added 2010/06/17 4:30 p.m.•7 views

CVE-2010-2317

7.5CVSS8.5AI score0.00105EPSS

Exploits1References4

Prion•added 2010/06/17 4:30 p.m.•7 views

Sql injection

7.5CVSS9.3AI score0.00105EPSS

Exploits1References4Affected Software1

CVE•added 2010/06/17 4:0 p.m.•43 views

CVE-2010-2317

CVE-2010-2317 concerns multiple SQL injection vulnerabilities in WmsCms 2.0 and earlier. The flaws allow remote attackers to inject arbitrary SQL through specific parameters: default.asp: (1) search, (2) sbr, (3) pid, (4) sbl, (5) FilePath; and printpage.asp: (6) sbr, (7) pr, (8) psPrice. The des...

7.5CVSS8.8AI score0.00105EPSS

Exploits1References4Affected Software1

Cvelist•added 2010/06/17 4:0 p.m.•14 views

CVE-2010-2317

8.5AI score0.00105EPSS

Exploits1References4

Cvelist•added 2010/06/17 4:0 p.m.•10 views

CVE-2010-2316

5.6AI score0.0025EPSS

Exploits1References4

CVE•added 2010/06/17 4:0 p.m.•36 views

CVE-2010-2316

CVE-2010-2316 describes multiple cross-site scripting (XSS) vulnerabilities in WmsCms 2.0 and earlier, affecting default.asp and related endpoints. The issue allows remote attackers to inject arbitrary web script or HTML via the (1) search, (2) sbr, (3) p, and (4) sbl parameters, with vectors dif...

4.3CVSS5.7AI score0.0025EPSS

Exploits1References4Affected Software1

Packet Storm•added 2010/06/07 12:0 a.m.•29 views

WMSCMS Cross Site Scripting / SQL Injection

Title: XSS, SQL injection vulnerability in WmsCMS EDB-ID: CVE: OSVDB-ID: Author: Ariko-Security Published: 2010-06-05 ============ Ariko-Security - Advisory 1/6/2010 ============= XSS, SQL injection vulnerability in WMSCMS 2007 Secunia Advisory SA25583 only XSS 3 params Vendor's Description of...

0.3AI score

Exploits0

0day.today•added 2010/06/06 12:0 a.m.•25 views

WmsCMS XSS / SQL Injection Vulnerability

Exploit for php platform in category web applications ======================================== WmsCMS XSS / SQL Injection Vulnerability ======================================== XSS, SQL injection vulnerability in WMSCMS 2007 Secunia Advisory SA25583 only XSS 3 params Vendor's Description of...

7.1AI score

Exploits0

exploitpack•added 2010/06/06 12:0 a.m.•13 views

WmsCMS - Cross-Site Scripting SQL Injection

WmsCMS - Cross-Site Scripting SQL Injection Title: XSS, SQL injection vulnerability in WmsCMS EDB-ID: CVE: OSVDB-ID: Author: Ariko-Security Published: 2010-06-05 ============ Ariko-Security - Advisory 1/6/2010 ============= XSS, SQL injection vulnerability in WMSCMS 2007 Secunia Advisory SA25583...

0.3AI score

Exploits0

Exploit DB•added 2010/06/06 12:0 a.m.•29 views

WmsCMS - Cross-Site Scripting / SQL Injection

7.4AI score

Exploits0

securityvulns•added 2007/06/11 12:0 a.m.•35 views

WmsCMS < = 2.0 Multiple XSS Vulnerabilities

Application: WmsCMS Vendors Url: http://www.web-master.biz Bug Type: Multiple URL Handling Remote Cross-Site Scripting Vulnerabilities Exploitation: Remote Severity: Less Critical Solution Status: Unpatched Introduction: WmsCMS is a web-based CMS system Google Dork: "Powered by WMS-CMS" Affected...

0.5AI score

Exploits0

Packet Storm•added 2007/06/10 12:0 a.m.•33 views

wmscms-xss.txt

7.4AI score

Exploits0

NVD•added 2007/06/08 4:30 p.m.•7 views

CVE-2007-3137

Multiple cross-site scripting XSS vulnerabilities in 4print.asp in WmsCMS 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 sbl, 2 sbr, or 3 search parameter. NOTE: the original disclosure claims the pageid parameter in index.php is affected, but this is...

4.3CVSS5.7AI score0.05687EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by