Lucene search
K

6 matches found

Circl
Circl
added 2018/08/06 2:41 p.m.5 views

CVE-2018-14840

creationtimestamp| type| source ---|---|--- 2018-08-06 14:41:21+00:00| seen| https://t.me/VulnerabilityNews/499...

6.1CVSS5.9AI score0.03666EPSS
Exploits6References1
exploitpack
exploitpack
added 2018/08/06 12:0 a.m.30 views

Subrion CMS 4.2.1 - Cross-Site Scripting

Subrion CMS 4.2.1 - Cross-Site Scripting Exploit Title: Subrion CMS- 4.2.1 XSS Using component with known Vulnerability Date: 02-08-2018 Exploit Author: Zeel Chavda Vendor Homepage: https://subrion.org/ Software Link: https://subrion.org/download/ Version: 4.2.1 REQUIRED Tested on: Windows,FireFo...

4.3CVSS6.1AI score0.03666EPSS
Exploits6
Packet Storm
Packet Storm
added 2018/08/06 12:0 a.m.34 views

Subrion CMS 4.2.1 Cross Site Scripting

Exploit Title: Subrion CMS- 4.2.1 XSS Using component with known Vulnerability Date: 02-08-2018 Exploit Author: Zeel Chavda Vendor Homepage: https://subrion.org/ Software Link: https://subrion.org/download/ Version: 4.2.1 REQUIRED Tested on: Windows,FireFox CVE : CVE-2018-14840 Steps: - 1. Create...

6.3AI score0.03666EPSS
Exploits6
0day.today
0day.today
added 2018/08/06 12:0 a.m.69 views

Subrion CMS 4.2.1 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Subrion CMS- 4.2.1 XSS Using component with known Vulnerability Exploit Author: Zeel Chavda Vendor Homepage: https://subrion.org/ Software Link: https://subrion.org/download/ Version: 4.2.1 REQUIRED Tested on: Windows,FireFox CV...

6.3AI score0.03666EPSS
Exploits6
Cvelist
Cvelist
added 2018/08/02 1:0 a.m.23 views

CVE-2018-14840

uploads/.htaccess in Subrion CMS 4.2.1 allows XSS because it does not block .html file uploads but does block, for example, .htm file uploads...

6AI score0.03666EPSS
Exploits6References3
CVE
CVE
added 2018/08/02 1:0 a.m.98 views

CVE-2018-14840

Subrion CMS 4.2.1 contains a Cross‑Site Scripting (XSS) vulnerability in uploads/.htaccess, where the app does not block .html uploads (while blocking .htm). An attacker can upload a .html file via CKEditor/manager and trigger XSS. Public exploit entries and a related commit reference support thi...

6.1CVSS5.8AI score0.03666EPSS
Exploits6References3Affected Software1
Rows per page
Query Builder