Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pro search pro search vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-0207
Multiple cross-site scripting (XSS) vulnerabilities in PRO-Search 0.17 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) prot, (2) host, (3) path, (4) name, (5) ext, (6) size, (7) search_days, or (8) show_page parameter to the d...
Pro Search Pro Search
1 EDB exploit
5
CVSSv2
CVE-2008-0199
PRO-Search 0.17 and previous versions allows remote malicious users to cause a denial of service via certain values of the show_page and time parameters to the default URI.
Pro Search Pro Search
4.3
CVSSv2
CVE-2007-5434
Cross-site scripting (XSS) vulnerability in PRO-search 0.17.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the q parameter to the default URI.
Pro.setun Pro-search
NA
CVE-2023-1435
The Ajax Search Pro WordPress plugin prior to 4.26.2 does not sanitise and escape various parameters before outputting them back in pages, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Ajax Search Project Ajax Search
NA
CVE-2023-1420
The Ajax Search Lite WordPress plugin prior to 4.11.1, Ajax Search Pro WordPress plugin prior to 4.26.2 does not sanitise and escape a parameter before outputting it back in a response of an AJAX action, leading to a Reflected Cross-Site Scripting which could be used against high...
Ajax Search Project Ajax Search
6.5
CVSSv2
CVE-2014-5084
A Command Execution vulnerability exists in Sphider Pro 3.2 due to insufficient sanitization of fwrite, which could let a remote malicious user execute arbitrary code. CVE-2014-5084 pertains to instances of fwrite in Sphider Pro only, but do not exist in either Sphider or Sphider...
Sphiderpro Sphider Pro 3.2
1 EDB exploit
6.5
CVSSv2
CVE-2014-5086
A Command Execution vulnerability exists in Sphider Pro, and Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5086 pertains to instances of fwrite in Sphider Pro and Sphider Plus only...
Sphider Sphider
Sphider-plus Sphider-plus
Sphiderpro Sphider Pro
1 EDB exploit
7.5
CVSSv2
CVE-2014-5081
sphider before 1.3.6, sphider-pro before 3.2, and sphider-plus before 3.2 allow authentication bypass
Sphider Sphider
Sphiderpro Sphider Pro
Sphider-plus Sphider-plus
1 EDB exploit
7.5
CVSSv2
CVE-2014-5087
A vulnerability exists in Sphider Search Engine before 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
Sphider Sphider
Sphider-plus Sphider-plus
Sphiderpro Sphider Pro
1 EDB exploit
7.5
CVSSv2
CVE-2005-4309
SQL injection vulnerability in ezUpload Pro 2.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via unspecified search module parameters.
Scriptscenter Ezupload Pro 2.1
Scriptscenter Ezupload Pro
Scriptscenter Ezupload Pro 1.1
Scriptscenter Ezupload Pro 2.0
Scriptscenter Ezupload Pro 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »