Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
DsquareRecent
RecentMost viewed

740 matches found

Dsquare
Dsquare•added 2014/05/20 12:0 a.m.•27 views

AlienVault 4.3.1 radar-iso27001-A11AccessControl-pot.php SQL Injection

SQL Injection vulnerabilty in AlienVault radar-iso27001-A11AccessControl-pot.php datefrom parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

1AI score
Exploits0References1
Dsquare
Dsquare•added 2014/05/20 12:0 a.m.•50 views

Tiki Wiki CMS Groupware SQL Injection

SQL Injection vulnerabilty in Tiki Wiki CMS Groupware tiki-searchresults.php searchLang parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.00354EPSS
Exploits1References1
Dsquare
Dsquare•added 2014/05/20 12:0 a.m.•33 views

PHP-Fusion 7.02.05 downloads.php SQL Injection

SQL Injection vulnerability in PHP-Fusion downloads.php orderby Parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS1AI score0.04778EPSS
Exploits1References1
Dsquare
Dsquare•added 2014/05/19 12:0 a.m.•201 views

Apache Roller RCE Linux

Apache Roller RCE with Java-based template engine Velocity Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

0.9AI score
Exploits0
Dsquare
Dsquare•added 2014/05/19 12:0 a.m.•136 views

MediaWiki thumb.php page Parameter Remote Shell Command Injection

MediaWiki contains a flaw that is due to the program failing to properly sanitize input passed via the "page" parameter in the thumb.php script. This may allow a remote attack to inject arbitrary shell commands. Vulnerability Type: Remote Command Execution For the exploit source code contact...

6CVSS1.1AI score0.48041EPSS
Exploits12References2
Dsquare
Dsquare•added 2014/05/13 12:0 a.m.•46 views

Zabbix httpmon.php SQL Injection

SQL Injection vulnerability in OpenEMR Zabbix httpmon.php applications parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.6AI score0.77788EPSS
Exploits9References3
Dsquare
Dsquare•added 2014/05/12 12:0 a.m.•39 views

Open Web Analytics Password Reset Page owa_email_address Parameter SQL Injection

SQL injection vulnerability in the password reset page in Open Web Analytics OWA before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the owaemailaddress parameter in a base.passwordResetRequest action to index.php. Vulnerability Type: SQL Injection For the exploit source co...

7.5CVSS2.9AI score0.01609EPSS
Exploits7References3
Dsquare
Dsquare•added 2014/05/10 12:0 a.m.•79 views

Wordpress Search Everything SQL Injection

SQL Injection vulnerabilty in Wordpress Search Everything plugin Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.00758EPSS
Exploits1References2
Dsquare
Dsquare•added 2014/05/10 12:0 a.m.•661 views

Dolibarr 3.4.0 SQL Injection

SQL Injection vulnerabilty in Dolibarr exportcsv.php Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

0.9AI score
Exploits0References2
Dsquare
Dsquare•added 2014/05/07 12:0 a.m.•40 views

POSH /portal/addtoapplication.php rssurl Parameter SQL Injection

SQL injection vulnerability in portal/addtoapplication.php in POSH aka Posh portal or Portaneo 3.0 before 3.3.0 allows remote attackers to execute arbitrary SQL commands via the rssurl parameter. Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS3.3AI score0.00287EPSS
Exploits2References2
Dsquare
Dsquare•added 2014/05/05 12:0 a.m.•143 views

Joomla 3.2.2 single-contact SQL Injection

SQL Injection vulnerability in Joomla 3.2.2 Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

0.9AI score
Exploits0
Dsquare
Dsquare•added 2014/04/29 12:0 a.m.•155 views

pfSense Snort File Disclosure

File disclosure vulnerability in snortlogview.php Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

7.2AI score
Exploits0References1
Dsquare
Dsquare•added 2014/04/11 12:0 a.m.•47 views

vtiger CRM 6.0.0 RCE

Remote command execution vulnerability in vtiger CRM Install Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

5CVSS1.3AI score0.77294EPSS
Exploits9References2
Dsquare
Dsquare•added 2014/04/11 12:0 a.m.•45 views

vtiger CRM 6.0 RC RCE

Remote command execution vulnerability in vtiger CRM Install Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

5CVSS1AI score0.77294EPSS
Exploits9References2
Dsquare
Dsquare•added 2014/04/02 12:0 a.m.•126 views

vTiger CRM 5.4.0 kcfinder LFI

Local file include vulnerability in vtiger CRM kcfinder component Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

4CVSS0.5AI score0.09795EPSS
Exploits10References2
Dsquare
Dsquare•added 2014/04/02 12:0 a.m.•51 views

vTiger CRM 5.4.0 kcfinder File Upload

File upload vulnerability in vtiger CRM kcfinder component Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

6.5CVSS0.5AI score0.79371EPSS
Exploits6References2
Dsquare
Dsquare•added 2014/03/19 12:0 a.m.•125 views

Seportal 2.5 SQLi

SQL injection in staticpages.php Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

0.6AI score
Exploits0
Dsquare
Dsquare•added 2014/03/14 12:0 a.m.•32 views

W3 Total Cache Plugin Remote Code Execution

Remote code execution vulnerability in W3 Total Cache Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.81656EPSS
Exploits4References3
Dsquare
Dsquare•added 2014/03/10 12:0 a.m.•49 views

vtiger CRM 5.4.0 get_picklists SQLi

SQL Injection vulnerability in vtiger CRM getpicklists SOAP method in /soap/customerportal.php Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.00363EPSS
Exploits6References1
Dsquare
Dsquare•added 2014/03/10 12:0 a.m.•42 views

vtiger CRM 5.4.0 File Upload

File upload vulnerability in vtiger CRM SOAP AddEmailAttachment service Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

7.5CVSS0.8AI score0.8812EPSS
Exploits13References2
Dsquare
Dsquare•added 2014/03/10 12:0 a.m.•43 views

vtiger CRM 5.4.0 get_tickets_list SQLi

SQL Injection vulnerability in vtiger CRM getticketslist SOAP method in /soap/customerportal.php Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.00363EPSS
Exploits6References1
Dsquare
Dsquare•added 2014/03/04 12:0 a.m.•66 views

AdRotate library/clicktracker.php track Parameter SQL Injection

AdRotate contains a flaw that may allow carrying out an SQL injection attack.The issue is due to the library/clicktracker.php script not properly sanitizing user-supplied input to the 'track' parameter. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database,...

7.5CVSS1.6AI score0.0992EPSS
Exploits7References2
Dsquare
Dsquare•added 2014/03/01 12:0 a.m.•64 views

Joomla 3.2.2 mod_tags_similar SQL Injection

SQL Injection vulnerability in Joomla 3.2.2 modtagssimilar/helper.php Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

0.9AI score
Exploits0References2
Dsquare
Dsquare•added 2014/02/25 12:0 a.m.•108 views

php_address_book authentication SQL injection

SQL Injection vulnerability in PHP Address Book Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

1AI score
Exploits0References1
Dsquare
Dsquare•added 2014/02/12 12:0 a.m.•33 views

appRain 3.0.2 SQL Injection

SQL Injection vulnerability in appRain Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.8AI score0.02569EPSS
Exploits7References2
Dsquare
Dsquare•added 2014/02/10 12:0 a.m.•33 views

Sophos Web Protection Appliance 3.7.8.1 RCE

Remote command execution vulnerability in Sophos Web Protection Appliance Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

9.3CVSS1.6AI score0.8235EPSS
Exploits11References3
Dsquare
Dsquare•added 2014/02/10 12:0 a.m.•42 views

HP Intelligent Management Center BIMS UploadServlet File Upload

File upload vulnerability in HP Intelligent Management Center BIMS UploadServlet Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

10CVSS0.6AI score0.74063EPSS
Exploits5References3
Dsquare
Dsquare•added 2014/02/10 12:0 a.m.•59 views

Sophos Web Protection Appliance 3.7.8.1 File Disclosure

File disclosure vulnerability in Sophos Web Protection Appliance Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

5CVSS0.4AI score0.8235EPSS
Exploits10References3
Dsquare
Dsquare•added 2014/02/08 12:0 a.m.•79 views

Apache-Struts2 DevMode RCE

Apache-Struts2 DevMode RCE Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

0.6AI score
Exploits0
Dsquare
Dsquare•added 2014/02/01 12:0 a.m.•35 views

ZonPHP 2.25 File Upload

File upload vulnerability in ZonPHP ofcuploadimage.php Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

7.5CVSS0.4AI score0.91085EPSS
Exploits8
Dsquare
Dsquare•added 2014/01/31 12:0 a.m.•74 views

Wordpress WP-FileManager 1.3.0 File Disclosure

File disclosure vulnerability in WP-FileManager incl/libfile.php Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

Exploits0
Dsquare
Dsquare•added 2014/01/22 12:0 a.m.•44 views

Nuked-klaN 1.7.7 / SP4.4 SQL injection

Nuked-klaN = 1.7.7 / = SP4.4 SQL Injection via Referer header Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS1.2AI score0.10024EPSS
Exploits2References2
Dsquare
Dsquare•added 2014/01/14 12:0 a.m.•77 views

TomatoCart 1.1.8 LFI

Local file include vulnerability in TomatoCart rpc.php Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

0.3AI score
Exploits0References2
Dsquare
Dsquare•added 2014/01/13 12:0 a.m.•56 views

HP SiteScope runOMAgentCommand 11.20 RCE

Remote code execution vulnerability in HP SiteScope runOMAgentCommand Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

10CVSS0.6AI score0.83849EPSS
Exploits10References3
Dsquare
Dsquare•added 2014/01/13 12:0 a.m.•35 views

HP SiteScope issueSiebelCmd 11.20 RCE

Remote code execution vulnerability in HP SiteScope issueSiebelCmd Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

7.5CVSS1.1AI score0.78003EPSS
Exploits5References3
Dsquare
Dsquare•added 2013/12/27 12:0 a.m.•76 views

SPIP ecran_securite connect Parameter RCE

SPIP core/securite/ecransecurite.php connect Parameter Remote Code Execution Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.69494EPSS
Exploits4References3
Dsquare
Dsquare•added 2013/12/10 12:0 a.m.•43 views

Apache Roller OGNL Injection

This module exploits an OGNL injection vulnerability in Apache Roller 5.0.2. The vulnerability is due to an OGNL injection on the UIAction controller because of an insecure usage of the ActionSupport.getText method. Vulnerability Type: Remote Command Execution For the exploit source code contact...

6.8CVSS1.8AI score0.87065EPSS
Exploits7References2
Dsquare
Dsquare•added 2013/12/01 12:0 a.m.•31 views

vBulletin 5.x Remote Administrator Injection

Remote administrator injection vulnerability in vBulletin upgrade.php Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...

7.5CVSS0.8AI score0.7819EPSS
Exploits7References2
Dsquare
Dsquare•added 2013/12/01 12:0 a.m.•74 views

vBulletin 4.1.x RCE

Remote command execution vulnerability in vBulletin upgrade.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.7819EPSS
Exploits7References2
Dsquare
Dsquare•added 2013/11/17 12:0 a.m.•52 views

Pydio File Upload

Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

8.5CVSS0.6AI score0.01265EPSS
Exploits3References2
Dsquare
Dsquare•added 2013/10/27 12:0 a.m.•46 views

Ginkgo CMS 5.0 SQL Injection

SQL Injection vulnerability in Ginkgo CMS rang parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS1.2AI score0.00215EPSS
Exploits2References2
Dsquare
Dsquare•added 2013/10/20 12:0 a.m.•72 views

Apache-Struts DefaultActionMapper < 2.3.15.1 RCE Linux

Apache-Struts2 RCE Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

9.3CVSS1.1AI score0.94325EPSS
Exploits18References4
Dsquare
Dsquare•added 2013/10/18 12:0 a.m.•60 views

Apache-Struts IncludeParams < 2.3.14.2 RCE Linux

Apache-Struts2 / OpenSymphony-Xwork RCE Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

9.3CVSS0.6AI score0.8761EPSS
Exploits9References3
Dsquare
Dsquare•added 2013/10/17 12:0 a.m.•42 views

Apache-Struts Showcase < 2.3.14.1 RCE Linux

Apache Struts Crafted Parameter Arbitrary OGNL Code Execution Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

9.3CVSS1.6AI score0.91789EPSS
Exploits1References3
Dsquare
Dsquare•added 2013/10/14 12:0 a.m.•47 views

Bilboplanet SQLi via auth

SQL Injection vulnerability in BilboPlanet auth.php. Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

1.6AI score
Exploits0References2
Dsquare
Dsquare•added 2013/10/10 12:0 a.m.•38 views

HP PCM+ SNAC Registration Server UpdateCertificatesServlet File Upload

File upload vulnerability in HP PCM+ SNAC Registration Server UpdateCertificatesServlet Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

10CVSS0.8AI score0.73996EPSS
Exploits10References2
Dsquare
Dsquare•added 2013/10/10 12:0 a.m.•39 views

HP PCM+ SNAC Registration Server UpdateDomainControllerServlet File Upload

File upload vulnerability in HP PCM+ SNAC Registration Server UpdateDomainControllerServlet Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

10CVSS0.8AI score0.83544EPSS
Exploits6References2
Dsquare
Dsquare•added 2013/10/07 12:0 a.m.•91 views

BigTree CMS 4.0 RC2 SQL Injection

SQL Injection vulnerability in BigTree CMS Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...

7.5CVSS0.9AI score0.01114EPSS
Exploits6References3
Dsquare
Dsquare•added 2013/10/04 12:0 a.m.•41 views

GLPI 0.84.1 RCE

Remote command execution vulnerability in GLPI install/install.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

6.8CVSS0.8AI score0.63954EPSS
Exploits11References1
Dsquare
Dsquare•added 2013/10/04 12:0 a.m.•34 views

Xibo 1.4.1 LFI

Local file include vulnerability in Xibo p parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...

5CVSS0.1AI score0.24188EPSS
Exploits2References2
Total number of security vulnerabilities740