Lucene search
K

52 matches found

CNVD
CNVD
added 2018/10/25 12:0 a.m.2 views

REDAXO cross-site scripting vulnerability (CNVD-2019-18491)

REDAXO is an open source Web portal content management system . The system supports custom modules , plug-in extensions , project backup and so on. REDAXO 5.6.3 version of the addons/mediapool/pages/index.php file there is a cross-site scripting vulnerability , a remote attacker can send...

6.1CVSS6.1AI score0.00905EPSS
Exploits1References1
CNVD
CNVD
added 2018/10/16 12:0 a.m.1 views

REDAXO Cross-Site Scripting Vulnerability (CNVD-2019-18493)

REDAXO is an open source Web portal content management system . The system supports custom modules , plug-in extensions , project backup and so on. REDAXO cross-site scripting vulnerability , remote attackers can use index.php?page=mediapool/media&openerinputfield=&args substring to exploit the...

5.4CVSS5.4AI score0.00684EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/10/09 10:0 p.m.14 views

CVE-2018-18198

The $openerinputfield variable in addons/mediapool/pages/index.php in REDAXO 5.6.3 is not effectively filtered and is output directly to the page. The attacker can insert XSS payloads via an index.php?page=mediapool/media&openerinputfield=XSS request...

6AI score0.00905EPSS
Exploits1References2
CVE
CVE
added 2018/10/09 10:0 p.m.42 views

CVE-2018-18198

The CVE-2018-18198 issue affects REDAXO 5.6.3 via addons/mediapool/pages/index.php where the $opener_input_field is not properly filtered and is echoed to the page. This allows an attacker to inject XSS payloads through a request such as index.php?page=mediapool/media&opener_input_field=[XSS]. Re...

6.1CVSS5.9AI score0.00905EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2018/10/01 8:29 a.m.11 views

CVE-2018-17830

The $args variable in addons/mediapool/pages/index.php in REDAXO 5.6.2 is not effectively filtered, because names are not restricted only values are restricted. The attacker can insert XSS payloads via an index.php?page=mediapool/media&openerinputfield=&args substring...

5.4CVSS5.2AI score0.00684EPSS
Exploits1References1
CNVD
CNVD
added 2018/06/15 12:0 a.m.1 views

Redaxo CMS Mediapool Plugin File Upload Vulnerability

Redaxo CMS is an open source Web portal content management system CMS. The system supports custom modules , plug-in extensions , project backup and so on. Redaxo CMS Mediapool plugin file upload vulnerability , an attacker can exploit the vulnerability to upload arbitrary files...

7.2AI score
Exploits0References1
Packet Storm
Packet Storm
added 2018/06/13 12:0 a.m.22 views

Redaxo CMS Mediapool Arbitrary File Upload

Exploit Title: Redaxo CMS Mediapool Addon 5.5.1 - Arbitrary File Upload Date: 2018-06-13 Exploit Author: mn@HackerWerkstatt Vendor Homepage: https://redaxo.org Software Link: https://redaxo.org/download/redaxo/5.5.1.zip Version: 5.5.1 and older Tested on: LinuxMint More: Login required PoC In the...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/06/13 12:0 a.m.64 views

Redaxo CMS Mediapool Addon < 5.5.1 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: Redaxo CMS Mediapool Addon 5.5.1 - Arbitrary File Upload Exploit Author: email protected Vendor Homepage: https://redaxo.org Software Link: https://redaxo.org/download/redaxo/5.5.1.zip Version: 5.5.1 and older Tested on: LinuxMi...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2018/06/13 12:0 a.m.20 views

Redaxo CMS Mediapool Addon 5.5.1 - Arbitrary File Upload

Redaxo CMS Mediapool Addon 5.5.1 - Arbitrary File Upload Exploit Title: Redaxo CMS Mediapool Addon 5.5.1 - Arbitrary File Upload Date: 2018-06-13 Exploit Author: mn@HackerWerkstatt Vendor Homepage: https://redaxo.org Software Link: https://redaxo.org/download/redaxo/5.5.1.zip Version: 5.5.1 and...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2018/06/13 12:0 a.m.35 views

Redaxo CMS Mediapool Addon &lt; 5.5.1 - Arbitrary File Upload

Exploit Title: Redaxo CMS Mediapool Addon 5.5.1 - Arbitrary File Upload Date: 2018-06-13 Exploit Author: mn@HackerWerkstatt Vendor Homepage: https://redaxo.org Software Link: https://redaxo.org/download/redaxo/5.5.1.zip Version: 5.5.1 and older Tested on: LinuxMint More: Login required PoC In the...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/02/16 12:0 a.m.42 views

Redaxo CMS 5.0.0 Cross Site Scripting / SQL Injection

=== LSE Leading Security Experts GmbH - Security Advisory 2016-01-18 === Redaxo CMS contains multiple vulnerabilities ------------------------------------------------------------- Problem Overview ================ Technical Risk: high Likelihood of Exploitation: medium Vendor:...

0.1AI score
Exploits0
Veeam
Veeam
added 2014/11/11 12:0 a.m.12 views

Backup to tape jobs fails when the source contains .vrb files

Challenge 1. When using backup to tape on a source job containing .vrb files, the jobs may fail with the error: MediaPool not found id: 00000000-0000-0000-0000-000000000000. 2. When enabling incremental mode in backup to tape, .vrb files will be transfered to tape. Cause This is a known issue...

6.9AI score
Exploits0
Rows per page
Query Builder