CVEs and Security Vulnerabilities

Export limit exceeded: 349002 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (349002 CVEs found)

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-20647	1 Car Rental Script Project	1 Car Rental Script	2024-11-21	N/A
PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory.
CVE-2018-20646	1 Basic B2b Script Project	1 Basic B2b Script	2024-11-21	N/A
PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory.
CVE-2018-20645	1 Basic B2b Script Project	1 Basic B2b Script	2024-11-21	N/A
PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field.
CVE-2018-20644	1 Basic B2b Script Project	1 Basic B2b Script	2024-11-21	N/A
PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature.
CVE-2018-20643	1 Entrepreneur Job Portal Script Project	1 Entrepreneur Job Portal Script	2024-11-21	N/A
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory.
CVE-2018-20642	1 Entrepreneur Job Portal Script Project	1 Entrepreneur Job Portal Script	2024-11-21	N/A
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote attackers to cause a denial of service (outage of profile editing) via crafted JavaScript code in the KeySkills field.
CVE-2018-20641	1 Entrepreneur Job Portal Script Project	1 Entrepreneur Job Portal Script	2024-11-21	N/A
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature.
CVE-2018-20640	1 Entrepreneur Job Portal Script Project	1 Entrepreneur Job Portal Script	2024-11-21	N/A
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting (XSS) via the Full Name field.
CVE-2018-20639	1 Entrepreneur Job Portal Script Project	1 Entrepreneur Job Portal Script	2024-11-21	N/A
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar.
CVE-2018-20638	1 Chartered Accountant \	1 Auditor Website Project	2024-11-21	N/A
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory.
CVE-2018-20637	1 Chartered Accountant \	1 Auditor Website Project	2024-11-21	N/A
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 allows remote attackers to cause a denial of service (unrecoverable blank profile) via crafted JavaScript code in the First Name and Last Name field.
CVE-2018-20636	1 Chartered Accountant \	1 Auditor Website Project	2024-11-21	N/A
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field.
CVE-2018-20635	1 Advance B2b Script Project	1 Advance B2b Script	2024-11-21	N/A
PHP Scripts Mall Advance B2B Script 2.1.4 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory.
CVE-2018-20634	1 Advance B2b Script Project	1 Advance B2b Script	2024-11-21	N/A
PHP Scripts Mall Advance B2B Script 2.1.4 allows remote attackers to cause a denial of service (changed Page structure) via JavaScript code in the First Name field.
CVE-2018-20633	1 Advance B2b Script Project	1 Advance B2b Script	2024-11-21	N/A
PHP Scripts Mall Advance B2B Script 2.1.4 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature.
CVE-2018-20632	1 Advance B2b Script Project	1 Advance B2b Script	2024-11-21	N/A
PHP Scripts Mall Advance B2B Script 2.1.4 has stored Cross-Site Scripting (XSS) via the FIRST NAME or LAST NAME field.
CVE-2018-20631	1 Website Seller Script Project	1 Website Seller Script	2024-11-21	N/A
PHP Scripts Mall Website Seller Script 2.0.5 allows full Path Disclosure via a request for an arbitrary image URL such as a .png file.
CVE-2018-20630	1 Advance Crowdfunding Script Project	1 Advance Crowdfunding Script	2024-11-21	N/A
PHP Scripts Mall Advance Crowdfunding Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory.
CVE-2018-20629	1 Charity Donation Script Project	1 Charity Donation Script	2024-11-21	N/A
PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory.
CVE-2018-20628	1 Charity Foundation Script Project	1 Charity Foundation Script	2024-11-21	N/A
PHP Scripts Mall Charity Foundation Script 1 through 3 allows directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory.

« first previous Page 15742 of 17451. next last »