36 matches found
CVE-2019-19500
CVE-2019-19500 affects Matrix42 Workspace Management 9.1.2.2765 and earlier. The vulnerability is a stored XSS in unfiltered description parameters of the WEB application (e.g., the comment field of a special software order). Root cause: lack of proper validation of client‑side data by the applic...
Matrix42 Workspace Management 9.1.2.2765 Cross Site Scripting
Matrix42 Workspace Management 9.1.2.2765 – Stored Cross-Site Scripting =============================================================================== Identifiers ------------------------------------------------- CVE-2019-19500 CVSSv3 score ------------------------------------------------- 9.1...
Matrix42 Workspace Management 9.1.2.2765 Cross Site Scripting Vulnerability
Matrix42 Workspace Management version 9.1.2.2765 suffers from a persistent cross site scripting vulnerability. Matrix42 Workspace Management 9.1.2.2765 – Stored Cross-Site Scripting =============================================================================== Identifiers...
matrix42.com XSS vulnerability
Open Bug Bounty ID: OBB-623278 Description| Value ---|--- Affected Website:| matrix42.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
matrix42.com XSS vulnerability
Open Bug Bounty ID: OBB-581908 Description| Value ---|--- Affected Website:| matrix42.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Matrix42 Remote Control Host 3.20.0031 Privilege Escalation
Exploit Title: Matrix42 Remote Control Host - Unquoted Path Privilege Escalation Date: 06-05-2016 Exploit Author: Roland C. Redl Vendor Homepage: https://www.matrix42.com/ Software Link: n/a Version: 3.20.0031 Tested on: Windows 7 Enterprise SP1 x64 CVE : n/a 1. Description: sc qc...
Matrix42 Remote Control Host 3.20.0031 - Unquoted Path Privilege Escalation
Exploit for windows platform in category local exploits Exploit Title: Matrix42 Remote Control Host - Unquoted Path Privilege Escalation Date: 06-05-2016 Exploit Author: Roland C. Redl Vendor Homepage: https://www.matrix42.com/ Software Link: n/a Version: 3.20.0031 Tested on: Windows 7 Enterprise...
Matrix42 Remote Control Host 3.20.0031 - Unquoted Path Privilege Escalation
Matrix42 Remote Control Host 3.20.0031 - Unquoted Path Privilege Escalation Exploit Title: Matrix42 Remote Control Host - Unquoted Path Privilege Escalation Date: 06-05-2016 Exploit Author: Roland C. Redl Vendor Homepage: https://www.matrix42.com/ Software Link: n/a Version: 3.20.0031 Tested on:...
Matrix42 Remote Control Host 3.20.0031 - Unquoted Path Privilege Escalation
Exploit Title: Matrix42 Remote Control Host - Unquoted Path Privilege Escalation Date: 06-05-2016 Exploit Author: Roland C. Redl Vendor Homepage: https://www.matrix42.com/ Software Link: n/a Version: 3.20.0031 Tested on: Windows 7 Enterprise SP1 x64 CVE : n/a 1. Description: sc qc...
CVE-2013-2504
Cross-site scripting XSS vulnerability in SPS/Portal/default.aspx in Service Desk in Matrix42 Service Store 5.3 SP3 aka 5.33.946.0 allows remote attackers to inject arbitrary web script or HTML via the query string...
Cross site scripting
Cross-site scripting XSS vulnerability in SPS/Portal/default.aspx in Service Desk in Matrix42 Service Store 5.3 SP3 aka 5.33.946.0 allows remote attackers to inject arbitrary web script or HTML via the query string...
CVE-2013-2504
CVE-2013-2504 is a documented XSS in Matrix42 Service Desk (Service Store 5.3 SP3 / 5.33.946.0). The vulnerability occurs in SPS/Portal/default.aspx and allows remote attackers to inject arbitrary web script or HTML via the query string. Exploitation is reported via public advisories and an explo...
CVE-2013-2504
Cross-site scripting XSS vulnerability in SPS/Portal/default.aspx in Service Desk in Matrix42 Service Store 5.3 SP3 aka 5.33.946.0 allows remote attackers to inject arbitrary web script or HTML via the query string...
CVE-2013-2504 : Matrix42 Service Desk XSS
43zsec SECURITY ADVISORY CVE ID : CVE-2013-2504 Product: Service Store 5.3 SP3 5.33.946.0 Vendor: matrix42 - member of asseco group Subject: Cross-site Scripting - XSS Classification: PCI 2.0: 6.5.7 PCI 1.2: 6.5.1 OWASP: A2 CWE: 79 CAPEC: 19 WASC: 08 Risk: High Effect: Remotely exploitable Author...
Matrix42 Service Store 5.3 SP3 Cross Site Scripting
43zsec SECURITY ADVISORY CVE ID : CVE-2013-2504 Product: Service Store 5.3 SP3 5.33.946.0 Vendor: matrix42 - member of asseco group Subject: Cross-site Scripting - XSS Classification: PCI 2.0: 6.5.7 PCI 1.2: 6.5.1 OWASP: A2 CWE: 79 CAPEC: 19 WASC: 08 Risk: High Effect: Remotely exploitable Author...
Matrix42 Service Store - 'default.aspx' Cross-Site Scripting
source: https://www.securityfocus.com/bid/59290/info Matrix42 Service Store is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...