Lucene search
K

7660 matches found

Packet Storm
Packet Storm
added 2020/04/06 12:0 a.m.157 views

LimeSurvey 4.1.11 Cross Site Scripting

Exploit Title: LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting Date: 2020-04-02 Exploit Author: Matthew Aberegg, Michael Burkey Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.1.11+200316 Tested on: Ubuntu 18.04.4 CVE : CVE-2020-11456 Vulnerability Details...

4.3CVSS0.70841EPSS
Exploits4
0day.today
0day.today
added 2020/04/06 12:0 a.m.45 views

LimeSurvey 4.1.11 - (Survey Groups) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting Exploit Author: Matthew Aberegg, Michael Burkey Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.1.11+200316 Tested on: Ubuntu 18.04.4 CVE :...

4.3CVSS5.8AI score0.70841EPSS
Exploits4
Exploit DB
Exploit DB
added 2020/04/06 12:0 a.m.333 views

LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting

Exploit Title: LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting Date: 2020-04-02 Exploit Author: Matthew Aberegg, Michael Burkey Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.1.11+200316 Tested on: Ubuntu 18.04.4 CVE : CVE-2020-11456 Vulnerability Details...

5.4CVSS5.9AI score0.70841EPSS
Exploits4
Exploit DB
Exploit DB
added 2020/04/06 12:0 a.m.254 views

pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting

Exploit Title: pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting Date: 2020-04-02 Exploit Author: Matthew Aberegg Vendor Homepage: https://www.pfsense.org Version: PfSense 2.4.4-P3 Tested on: FreeBSD 11.2-RELEASE-p10 CVE : CVE-2020-11457 Vulnerability Details Description : A...

5.4CVSS5.6AI score0.09282EPSS
Exploits3
ThreatPost
ThreatPost
added 2020/04/03 7:31 p.m.69 views

Self-Propagating Malware Targets Thousands of Docker Ports Per Day

The Docker cloud containerization technology is under fire, with an organized, self-propagating cryptomining campaign targeting misconfigured open Docker Daemon API ports. Thousands of container-compromise attempts are being observed every day as part of the campaign, according to Gal Singer, a...

7.5AI score
Exploits0References12
Exploit DB
Exploit DB
added 2020/04/03 12:0 a.m.231 views

Pandora FMS 7.0NG - 'net_tools.php' Remote Code Execution

Exploit Title: Pandora FMS 7.0NG - 'nettools.php' Remote Code Execution Build: PC170324 - MR 0 Date: 2020-03-30 Exploit Author: Basim Alabdullah Vendor homepage: http://pandorafms.org/ Version: 7.0 Software link: https://pandorafms.org/features/free-download-monitoring-software/ Tested on: CentOS...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2020/03/25 12:0 a.m.170 views

LeptonCMS 4.5.0 - Persistent Cross-Site Scripting

LeptonCMS 4.5.0 - Persistent Cross-Site Scripting Exploit Title: LeptonCMS 4.5.0 - Persistent Cross-Site Scripting Google Dork: "lepton cms" Date: 2019-03-24 Exploit Author: SunCSR Sun Cyber Security Research Vendor Homepage: https://lepton-cms.org/english/home.php Software Link:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2020/03/24 12:0 a.m.166 views

UliCMS 2020.1 Cross Site Scripting

Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : N/A Vulnerability : Stored Cross-Site...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/03/24 12:0 a.m.337 views

Wordpress WPForms 1.5.9 Plugin - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin WPForms 1.5.9 - Persistent Cross-Site Scripting Vendor Homepage: https://wpforms.com Vendor Changelog: https://wordpress.org/plugins/wpforms-lite/developers Exploit Author: Jinson Varghese Behanan Author Advisor...

5.5AI score0.04428EPSS
Exploits6
Packet Storm
Packet Storm
added 2020/03/24 12:0 a.m.337 views

WordPress WPForms 1.5.9 Cross Site Scripting

Exploit Title: Wordpress Plugin WPForms 1.5.9 - Persistent Cross-Site Scripting Date: 2020-02-18 Vendor Homepage: https://wpforms.com Vendor Changelog: https://wordpress.org/plugins/wpforms-lite/developers Exploit Author: Jinson Varghese Behanan Author Advisory:...

5.5AI score0.04428EPSS
Exploits6
0day.today
0day.today
added 2020/03/24 12:0 a.m.124 views

UliCMS 2020.1 - Persistent Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : N/A Vulnerabilit...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2020/03/24 12:0 a.m.98 views

UliCMS 2020.1 - Persistent Cross-Site Scripting

UliCMS 2020.1 - Persistent Cross-Site Scripting Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2020/03/24 12:0 a.m.231 views

UliCMS 2020.1 - Persistent Cross-Site Scripting

Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : CVE-2020-12704 Vulnerability : Stored...

6.1CVSS6.4AI score0.01186EPSS
Exploits1
ThreatPost
ThreatPost
added 2020/03/16 5:16 p.m.19 views

Microsoft Edge Shares Privacy-Busting Telemetry, Research Alleges

Microsoft Edge is one of the least private web browsers — even more so than other popular browsers like Google Chrome and Mozilla Firefox — according to academic researchers. According to the analysis, from Douglas Leith with the School of Computer Science and Statistics at Trinity College in...

0.3AI score
Exploits0References7
NVD
NVD
added 2020/03/12 9:15 p.m.16 views

CVE-2020-0546

Unquoted service path in IntelR OptaneTM DC Persistent Memory Module Management Software before version 1.0.0.3461 may allow an authenticated user to potentially enable escalation of privilege and denial of service via local access...

7.8CVSS7.7AI score0.00337EPSS
Exploits0References1
Prion
Prion
added 2020/03/12 9:15 p.m.12 views

Design/Logic Flaw

Unquoted service path in IntelR OptaneTM DC Persistent Memory Module Management Software before version 1.0.0.3461 may allow an authenticated user to potentially enable escalation of privilege and denial of service via local access...

4.6CVSS7.6AI score0.00337EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/12 8:45 p.m.23 views

CVE-2020-0546

Unquoted service path in IntelR OptaneTM DC Persistent Memory Module Management Software before version 1.0.0.3461 may allow an authenticated user to potentially enable escalation of privilege and denial of service via local access...

8.4AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2020/03/12 8:45 p.m.80 views

CVE-2020-0546

CVE-2020-0546 documents an unquoted service path in Intel Optane DC Persistent Memory Module Management Software prior to version 1.0.0.3461, potentially enabling local escalation of privilege and denial of service for authenticated users. Affects Intel Optane DC Persistent Memory Module Manageme...

7.8CVSS7.7AI score0.00337EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/03/12 12:0 a.m.2 views

Intel Optane DC Persistent Memory Module Management Software Authentication Error Vulnerability

Intel Graphics Drivers is an integrated graphics driver from Intel USA. A security vulnerability exists in versions prior to Intel Optane DC Persistent Memory Module Management Software 1.0.0.3461. A local attacker can exploit the vulnerability to elevate privileges...

7.8CVSS8.5AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2020/03/10 3:15 p.m.16 views

CVE-2019-12444

An issue was discovered in GitLab Community and Enterprise Edition 8.9 through 11.11. Wiki Pages contained a lack of input validation which resulted in a persistent XSS vulnerability...

6.1CVSS5.7AI score0.00691EPSS
Exploits0References2
Rows per page
Query Builder