CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Hacker News•added 2023/10/09 12:36 p.m.•42 views

Cybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. Firms

Senior executives working in U.S.-based organizations are being targeted by a new phishing campaign that leverages a popular adversary-in-the-middle AiTM phishing toolkit named EvilProxy to conduct credential harvesting and account takeover attacks. Menlo Security said the activity started in Jul...

7AI score

Trend Micro Simply Security•added 2023/08/08 12:0 a.m.•7 views

Lower Data Breach Insurance Costs with These Tips

The changing attack landscape has resulted in the hardening of the data breach insurance market. Gain insight into how implementing security controls can reduce the mean time to detect and control the costliness of an attack...

7AI score

Openbugbounty•added 2023/08/06 3:47 p.m.•20 views

praxis-insurance.gr Cross Site Scripting vulnerability OBB-3570153

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score

Rapid7 Blog•added 2023/07/27 8:29 p.m.•15 views

PenTales: There Are Many Ways to Infiltrate the Cloud

At Rapid7 we love a good pen test story. So often they show the cleverness, skill, resilience, and dedication to our customer’s security that can only come from actively trying to break it! In this series, we’re going to share some of our favorite tales from the pen test desk and hopefully...

7.4AI score

OSV•added 2023/07/24 3:15 a.m.•2 views

CVE-2023-3861

A vulnerability was found in phpscriptpoint Insurance 1.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /search.php. The manipulation leads to cross site scripting. The attack can be launched remotely. The identifier VDB-235213 was...

6.1CVSS3.8AI score

OSV•added 2023/07/24 3:15 a.m.•1 views

CVE-2023-3860

A vulnerability was found in phpscriptpoint Insurance 1.2. It has been classified as problematic. Affected is an unknown function of the file /page.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-235212...

6.1CVSS3.8AI score

NVD•added 2023/07/24 3:15 a.m.•8 views

CVE-2023-3860

6.1CVSS4.5AI score0.00075EPSS

NVD•added 2023/07/24 3:15 a.m.•8 views

CVE-2023-3861

6.1CVSS4.5AI score0.00081EPSS

Prion•added 2023/07/24 3:15 a.m.•20 views

Cross site scripting

4CVSS6AI score0.00081EPSS

Prion•added 2023/07/24 3:15 a.m.•17 views

Cross site scripting

4CVSS6AI score0.00075EPSS

CVE•added 2023/07/24 3:0 a.m.•41 views

CVE-2023-3861

CVE-2023-3861 affects phpscriptpoint Insurance 1.2. The vulnerability is a cross-site scripting flaw in an unknown function within the file /search.php, allowing remote exploitation. Several connected sources confirm the issue and its association with a client-facing search handler. The CVE descr...

6.1CVSS4.5AI score0.00081EPSS

Vulnrichment•added 2023/07/24 3:0 a.m.•9 views

CVE-2023-3861 phpscriptpoint Insurance search.php cross site scripting

4CVSS6.2AI score0.00081EPSS

CVE•added 2023/07/24 2:31 a.m.•42 views

CVE-2023-3860

CVE-2023-3860 affects phpscriptpoint Insurance 1.2. The vulnerability is described as a remote cross-site scripting in an unknown function of the file /page.php, with exploitation possible remotely. Associated advisories (PRION/PT-2023-26526 and RED HAT/CVE-2023-3860 entries) note the vendor was ...

6.1CVSS4.8AI score0.00075EPSS

Cvelist•added 2023/07/24 2:31 a.m.•13 views

CVE-2023-3860 phpscriptpoint Insurance page.php cross site scripting

4CVSS6.2AI score0.00075EPSS

CNNVD•added 2023/07/24 12:0 a.m.•0 views

Insurance 跨站脚本漏洞

Insurance is a responsive business and insurance related web content management system CMS from the phpscriptpoint team. A cross-site scripting vulnerability exists in Insurance version 1.2, which stems from the inclusion of unknown functions in the file search.php, resulting in cross-site...

6.1CVSS4.1AI score0.00081EPSS

Exploits0References3

Positive Technologies•added 2023/07/24 12:0 a.m.•2 views

PT-2023-26530 · Unknown · Phpscriptpoint Insurance

Name of the Vulnerable Software and Affected Versions: phpscriptpoint Insurance version 1.2 Description: A vulnerability was found in the file /search.php, which leads to cross site scripting. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not...

6.1CVSS6.2AI score0.00081EPSS

Exploits0References6

Positive Technologies•added 2023/07/24 12:0 a.m.•2 views

PT-2023-26526 · Unknown · Phpscriptpoint Insurance

Name of the Vulnerable Software and Affected Versions: phpscriptpoint Insurance version 1.2 Description: A vulnerability was found in the software, classified as problematic. It affects an unknown function of the file /page.php, leading to cross site scripting. The manipulation can be launched...

6.1CVSS6.2AI score0.00075EPSS

Exploits0References6

CNNVD•added 2023/07/24 12:0 a.m.•2 views

Insurance 跨站脚本漏洞

6.1CVSS4.1AI score0.00075EPSS

Exploits0References3

Packet Storm•added 2023/07/17 12:0 a.m.•235 views

Insurance 1.2 Cross Site Scripting

Exploit Title: Insurance 1.2 - Reflected XSS Exploit Author: CraCkEr Date: 16/07/2023 Vendor: phpscriptpoint Vendor Homepage: https://phpscriptpoint.com/ Software Link: https://demo.phpscriptpoint.com/insurance/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description The...

7.1AI score