Lucene search
K

40 matches found

Prion
Prion
added 2022/09/29 2:15 p.m.16 views

Cross site scripting

FeehiCMS v2.1.1 was discovered to contain a cross-site scripting XSS vulnerability via a crafted payload injected into the Comment box under the Single Page module...

4.9CVSS5.2AI score0.00421EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/29 1:33 p.m.7 views

CVE-2022-40408

FeehiCMS v2.1.1 was discovered to contain a cross-site scripting XSS vulnerability via a crafted payload injected into the Comment box under the Single Page module...

5.3AI score0.00421EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/09/29 12:0 a.m.4 views

FeehiCMS 跨站脚本漏洞

FeehiCMS is a Php-based CMS builder by Liufee's personal developer. feehiCMS version v2.1.1 has a security vulnerability that stems from the ability to inject carefully crafted payloads via the comment box under the single page module. No detailed vulnerability details are currently available...

5.4CVSS6.8AI score0.00421EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/09/29 12:0 a.m.5 views

PT-2022-25371 · Feehicms · Feehicms

Name of the Vulnerable Software and Affected Versions: FeehiCMS versions 2.0.1.1 and prior Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability can be exploited via a crafted payload injected into the Comment box under the Single Page module...

5.4CVSS5AI score0.00421EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2022/04/10 9:15 p.m.3 views

CVE-2022-27961

A cross-site scripting XSS vulnerability at /ofcms/company-c-47 in OFCMS v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment text box...

5.4CVSS6.3AI score0.00429EPSS
Exploits1References2
NVD
NVD
added 2019/07/05 3:16 p.m.15 views

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

4.8CVSS4.8AI score0.00622EPSS
Exploits1References1
OSV
OSV
added 2019/07/05 3:16 p.m.19 views

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

4.8CVSS5.7AI score
Exploits0References1
Prion
Prion
added 2019/07/05 3:16 p.m.18 views

Cross site scripting

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

3.5CVSS4.7AI score0.00622EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/07/05 2:5 p.m.15 views

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

4.9AI score0.00622EPSS
Exploits1References1
exploitpack
exploitpack
added 2018/02/27 12:0 a.m.14 views

MyBB My Arcade Plugin 1.3 - Cross-Site Scripting

MyBB My Arcade Plugin 1.3 - Cross-Site Scripting Exploit Title: MyBB My Arcade Plugin v1.3 - Persistent XSS Date: 2/21/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=411 Version: 1.3 Tested on: Ubuntu...

6.7AI score
Exploits0
0day.today
0day.today
added 2013/09/23 12:0 a.m.82 views

Wordpress NOSpamPTI Plugin - Blind SQL Injection Vulnerability

Exploit for php platform in category web applications NOSpamPTI Wordpress plugin Blind SQL Injection Vendor product description NOSpamPTI eliminates the spam in your comment box so strong and free, developed from the idea of Nando Vieira http://bit.ly/d38gB8, but some themes do not support change...

7.5CVSS0.4AI score0.02854EPSS
Exploits6
Exploit DB
Exploit DB
added 2013/09/23 12:0 a.m.145 views

WordPress Plugin NOSpamPTI - Blind SQL Injection

NOSpamPTI Wordpress plugin Blind SQL Injection Vendor product description NOSpamPTI eliminates the spam in your comment box so strong and free, developed from the idea of Nando Vieira http://bit.ly/d38gB8, but some themes do not support changes to the functions.php to this we alter this function...

7.5CVSS6.5AI score0.02854EPSS
Exploits6
0day.today
0day.today
added 2013/09/21 12:0 a.m.71 views

WordPress NOSpamPTI 2.1 Blind SQL Injection Vulnerability

WordPress NOSpamPTI plugin version 2.1 suffers from a remote blind SQL injection vulnerability. NOSpamPTI Wordpress plugin Blind SQL Injection Vendor product description NOSpamPTI eliminates the spam in your comment box so strong and free, developed from the idea of Nando Vieira...

7.5CVSS0.2AI score0.02854EPSS
Exploits6
NVD
NVD
added 2010/12/02 4:22 p.m.24 views

CVE-2010-4371

Buffer overflow in the inmod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to the comment box...

9.3CVSS6.9AI score0.061EPSS
Exploits0References3
Prion
Prion
added 2010/12/02 4:22 p.m.19 views

Buffer overflow

Buffer overflow in the inmod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to the comment box...

9.3CVSS7.6AI score0.061EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/12/02 4:0 p.m.24 views

CVE-2010-4371

Buffer overflow in the inmod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to the comment box...

6.8AI score0.061EPSS
Exploits0References3
CVE
CVE
added 2010/12/02 4:0 p.m.60 views

CVE-2010-4371

CVE-2010-4371 is a buffer overflow in Winamp’s in_mod plugin (pre-5.6) exploitable via the comment box. The OpenVAS/NVD records confirm the affected component and version range, with the root cause being a buffer overflow in in_mod. Impact is described as unspecified in the source, and no remedia...

9.3CVSS7AI score0.061EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2010/03/23 1:0 a.m.13 views

CVE-2010-1048

Cross-site scripting XSS vulnerability in blog/index.php in Uiga Business Portal allows remote attackers to inject arbitrary web script or HTML via the textcomment parameter aka the Comment Box in a noentryid action. NOTE: some of these details are obtained from third party information...

4.3CVSS5.7AI score0.01449EPSS
Exploits1References3
Prion
Prion
added 2010/03/23 1:0 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in blog/index.php in Uiga Business Portal allows remote attackers to inject arbitrary web script or HTML via the textcomment parameter aka the Comment Box in a noentryid action. NOTE: some of these details are obtained from third party information...

4.3CVSS6.2AI score0.01449EPSS
Exploits1References3
Prion
Prion
added 2010/02/11 5:30 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in assess.php in evalSMSI 2.1.03 allows remote attackers to inject arbitrary web script or HTML via the reports comment box in a continueassess action. NOTE: some of these details are obtained from third party information...

4.3CVSS6.1AI score0.01324EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder