Lucene search
+L

8 matches found

CNVD
CNVD
added 2018/08/08 12:0 a.m.8 views

PHP Scripts Mall PHP Template Store Script Cross-Site Scripting Vulnerability

PHP Scripts Mall PHP Template Store Script is a set of scripts for selling website templates online by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall PHP Template Store Script version 3.0.6. The vulnerability can be exploited by a remote attacker to inject...

5.4CVSS5.3AI score0.01604EPSS
Exploits5References1
Veracode
Veracode
added 2017/09/22 8:0 a.m.23 views

Cross-site Scripting

dolibarr is vulnerable to cross-site scripting attacks. The attack exists because it does not correctly filter the "url" field through the external calendar or 2 the bank name field in the "import external calendar" page, allowing the attacker to inject arbitrary script through them...

6.1CVSS5.9AI score0.01696EPSS
Exploits2References3Affected Software1
CNVD
CNVD
added 2016/01/21 12:0 a.m.5 views

Multiple Cross-Site Scripting Vulnerabilities in Dolibarr ERP/CRM

Dolibarr ERP/CRM is the software that manages your company's business information. Multiple cross-site scripting vulnerabilities in Dolibarr ERP/CRM 3.8.3 and prior versions allow remote attackers to inject arbitrary web script or HTML via the url of an external calendar or the "Import External...

6.1CVSS6.1AI score0.01696EPSS
Exploits2References1
NVD
NVD
added 2016/01/15 7:59 p.m.16 views

CVE-2015-8685

Multiple cross-site scripting XSS vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 external calendar url or 2 the bank name field in the "import external calendar" page...

6.1CVSS6.1AI score0.01696EPSS
Exploits2References4
UbuntuCve
UbuntuCve
added 2016/01/15 7:59 p.m.25 views

CVE-2015-8685

Multiple cross-site scripting XSS vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 external calendar url or 2 the bank name field in the "import external calendar" page...

6.1CVSS6.4AI score0.01696EPSS
Exploits2References3
OSV
OSV
added 2016/01/15 7:59 p.m.5 views

UBUNTU-CVE-2015-8685

Multiple cross-site scripting XSS vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 external calendar url or 2 the bank name field in the "import external calendar" page...

6.1CVSS6.4AI score0.01696EPSS
Exploits2References4
Prion
Prion
added 2016/01/15 7:59 p.m.19 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 external calendar url or 2 the bank name field in the "import external calendar" page...

4.3CVSS6AI score0.01696EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2016/01/15 7:0 p.m.23 views

CVE-2015-8685

Multiple cross-site scripting XSS vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 external calendar url or 2 the bank name field in the "import external calendar" page...

6.1AI score0.01696EPSS
Exploits2References4
Rows per page
Query Builder