Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-16819
HistoryNov 17, 2017 - 5:00 p.m.

CVE-2017-16819

2017-11-1717:00:00
mitre
www.cve.org
2

EPSS

0.003

Percentile

71.4%

JSON

A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst (aka First Name) field for the employee details page (/employee.html) that is then reflected in multiple pages where that field data is utilized, resulting in session hijacking and possible elevation of privileges.

Related

zdt 1
exploitdb 1
nvd 1
prion 1
exploitpack 1
cve 1
zdt
zdt
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting Vulnerability
2017-11-22 00:00:00
exploitdb
exploitdb
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting
2017-11-17 00:00:00
nvd
nvd
CVE-2017-16819
2017-11-17 17:29:00
prion
prion
Cross site scripting
2017-11-17 17:29:00
exploitpack
exploitpack
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting
2017-11-17 00:00:00
cve
cve
CVE-2017-16819
2017-11-17 17:29:00

EPSS

0.003

Percentile

71.4%

JSON
Related for CVELIST:CVE-2017-16819
zdt1exploitdb1nvd1prion1exploitpack1cve1