Lucene search
K

49 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7549

Malware in sbrugna...

6.1CVSS6.3AI score0.00947EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7553

Malware in sbrugna...

8.8CVSS8.8AI score0.00538EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-7548

Malware in sbrugna...

6.1CVSS6.3AI score0.00474EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9612

Malware in sbrugna...

6.1CVSS6.3AI score0.00803EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7554

Malware in sbrugna...

6.1CVSS6.2AI score0.00699EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7550

Malware in sbrugna...

6.1CVSS6.3AI score0.00947EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7551

Malware in sbrugna...

9.8CVSS9.5AI score0.00792EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-7547

Malware in sbrugna...

5.3CVSS5.5AI score0.00932EPSS
Exploits1References2
OSV
OSV
added 2018/10/01 11:29 p.m.4 views

CVE-2018-17870

An issue was discovered in BTITeam XBTIT 2.5.4. The "returnto" parameter of accountchange.php is vulnerable to an open redirect, a different vulnerability than CVE-2018-15683...

6.1CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2018/10/01 11:29 p.m.13 views

Open redirect

An issue was discovered in BTITeam XBTIT 2.5.4. The "returnto" parameter of accountchange.php is vulnerable to an open redirect, a different vulnerability than CVE-2018-15683...

5.8CVSS6.1AI score0.00803EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/09/07 12:0 a.m.5 views

BTITeam XBTIT cross-site scripting vulnerability (CNVD-2018-19430)

BTITeam XBTIT is an open source bittorrent tracking system. A cross-site scripting vulnerability exists in BTITeam XBTIT. Attackers can use the 'String.replace' function and 'eval' function to exploit the vulnerability to bypass the includes/crkprotection.php script of the anti-cross-site scripti...

5.3CVSS5.5AI score0.00932EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/06 12:0 a.m.3 views

BTITeam XBTIT Cross-Site Scripting Vulnerability (CNVD-2019-28273)

XBTIT is an open source tracking software. A stored cross-site scripting vulnerability exists in newsfeed /index.php?page=viewnews in BTITeam XBTIT 2.5.4. An attacker can exploit this vulnerability to conduct a cross-site scripting attack via the headline of a news item...

6.1CVSS5.9AI score0.00474EPSS
Exploits1References1
NVD
NVD
added 2018/09/05 9:29 p.m.18 views

CVE-2018-16361

An issue was discovered in BTITeam XBTIT 2.5.4. news.php allows XSS via the id parameter...

6.1CVSS6AI score0.00947EPSS
Exploits1References2
OSV
OSV
added 2018/09/05 9:29 p.m.4 views

CVE-2018-16361

An issue was discovered in BTITeam XBTIT 2.5.4. news.php allows XSS via the id parameter...

6.1CVSS5.8AI score0.00947EPSS
Exploits1References2
NVD
NVD
added 2018/09/05 9:29 p.m.14 views

CVE-2018-15684

An issue was discovered in BTITeam XBTIT. PHP error logs are stored in an open directory /include/logs using predictable file names, which can lead to full path disclosure and leakage of sensitive data...

5.3CVSS5.2AI score0.00961EPSS
Exploits1References1
OSV
OSV
added 2018/09/05 9:29 p.m.4 views

CVE-2018-15684

An issue was discovered in BTITeam XBTIT. PHP error logs are stored in an open directory /include/logs using predictable file names, which can lead to full path disclosure and leakage of sensitive data...

5.3CVSS5.8AI score0.00961EPSS
Exploits1References1
OSV
OSV
added 2018/09/05 9:29 p.m.3 views

CVE-2018-15678

An issue was discovered in BTITeam XBTIT 2.5.4. The "act" parameter in the sign-up page available at /index.php?page=signup is vulnerable to reflected cross-site scripting...

6.1CVSS5.3AI score0.00947EPSS
Exploits1References2
OSV
OSV
added 2018/09/05 9:29 p.m.2 views

CVE-2018-15681

An issue was discovered in BTITeam XBTIT 2.5.4. When a user logs in, their password hash is rehashed using a predictable salt and stored in the "pass" cookie, which is not flagged as HTTPOnly. Due to the weak and predictable salt that is in place, an attacker who successfully steals this cookie c...

9.8CVSS5.8AI score0.00751EPSS
Exploits1References1
NVD
NVD
added 2018/09/05 9:29 p.m.18 views

CVE-2018-15677

The newsfeed aka /index.php?page=viewnews in BTITeam XBTIT 2.5.4 has stored XSS via the title of a news item. This is also exploitable via CSRF...

6.1CVSS6AI score0.00474EPSS
Exploits1References2
NVD
NVD
added 2018/09/05 9:29 p.m.13 views

CVE-2018-15679

An issue was discovered in BTITeam XBTIT 2.5.4. The "keywords" parameter in the search function available at /index.php?page=forums&action=search is vulnerable to reflected cross-site scripting...

6.1CVSS6AI score0.00947EPSS
Exploits1References2
Rows per page
Query Builder