Lucene search
K

7660 matches found

exploitpack
exploitpack
added 2018/01/12 12:0 a.m.27 views

Xnami 1.0 - Cross-Site Scripting

Xnami 1.0 - Cross-Site Scripting Exploit Title: Xnami Image Sharing - Persistent XSS Vulnerability Google Dork: " Copyright 2017 xnami. " & 2018 Date: 11-01-2018 Exploit Author: Dennis Veninga Contact Author: d.veninga at networking4all.com Vendor Homepage: bizlogicdev.com Version: 1.0 CVE-ID:...

4.3CVSS0.02186EPSS
Exploits5
Vulnerability Lab
Vulnerability Lab
added 2018/01/12 12:0 a.m.112 views

Piwigo v2.8.2 & 2.9.1 CMS - Multiple Cross Site Vulnerabilities

Document Title: =============== Piwigo v2.8.2 & 2.9.1 CMS - Multiple Cross Site Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2005 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5692 CVE-ID: ======= CVE-2018-5692 Release Date...

4.3CVSS6.5AI score0.00683EPSS
Exploits3
Vulnerability Lab
Vulnerability Lab
added 2018/01/12 12:0 a.m.121 views

SonicWall GMS v8.1 - Filter Bypass & Persistent Vulnerability

Document Title: =============== SonicWall GMS v8.1 - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1819 Release Notes:...

3.5CVSS5.9AI score0.00708EPSS
Exploits3
Packet Storm
Packet Storm
added 2018/01/12 12:0 a.m.86 views

Magento Connect T1 Cross Site Scripting

Document Title: =============== Magento Connect T1 - Claim Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1469 Release Date: ============= 2018-01-08 Vulnerability Laboratory ID VL-ID: ==================================== 1469...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/01/12 12:0 a.m.31 views

Taxi Booking Script 1.0 Cross Site Scripting

Exploit Title: Taxi Booking Script v1.0 - Cross-site Scripting XSS Date: 11.01.2018 Vendor Homepage: https://www.phpjabbers.com/taxi-booking-script/ Software Link: Demo: http://demo.phpjabbers.com/1515648238792/index.php?controller=pjAdminUsers&action=pjActionIndex&err=AU01 Version: 1.0 Category:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/12 12:0 a.m.26 views

Taxi Booking Script 1.0 - Cross-site Scripting

Exploit Title: Taxi Booking Script v1.0 - Cross-site Scripting XSS Date: 11.01.2018 Vendor Homepage: https://www.phpjabbers.com/taxi-booking-script/ Software Link: Demo: http://demo.phpjabbers.com/1515648238792/index.php?controller=pjAdminUsers&action=pjActionIndex&err=AU01 Version: 1.0 Category:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/12 12:0 a.m.28 views

Xnami 1.0 - Cross-Site Scripting

Exploit Title: Xnami Image Sharing - Persistent XSS Vulnerability Google Dork: " Copyright 2017 xnami. " & 2018 Date: 11-01-2018 Exploit Author: Dennis Veninga Contact Author: d.veninga at networking4all.com Vendor Homepage: bizlogicdev.com Version: 1.0 CVE-ID: CVE-2018-5370 Xnami facilitates the...

6.1CVSS6.3AI score0.02186EPSS
Exploits5
Vulnerability Lab
Vulnerability Lab
added 2018/01/12 12:0 a.m.57 views

SonicWall GMS v8.1 - Filter Bypass & Persistent Vulnerability

Document Title: =============== SonicWall GMS v8.1 - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1819 Release Notes:...

5.4CVSS0.2AI score0.00708EPSS
Exploits3
Vulnerability Lab
Vulnerability Lab
added 2018/01/12 12:0 a.m.51 views

Piwigo v2.8.2 & 2.9.1 CMS - Multiple Cross Site Vulnerabilities

Document Title: =============== Piwigo v2.8.2 & 2.9.1 CMS - Multiple Cross Site Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2005 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5692 CVE-ID: ======= CVE-2018-5692 Release Date...

6.1CVSS0.3AI score0.00683EPSS
Exploits3
seebug.org
seebug.org
added 2018/01/11 12:0 a.m.61 views

Sophos XG from Unauthenticated Persistent XSS to Unauthorized Root Access(CVE-2017-18014)

Vulnerability Summary The following advisory describes an unauthenticated persistent XSS that leads to unauthorized root access found in Sophos XG version 17. Sophos XG Firewall “provides unprecedented visibility into your network, users, and applications directly from the all-new control center...

6.9AI score0.02307EPSS
Exploits2
Packet Storm
Packet Storm
added 2018/01/11 12:0 a.m.64 views

Joomla! Easydiscuss Cross Site Scripting

Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the useras browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body and add any html code after that, whenever a user tries to...

5.9AI score0.01581EPSS
Exploits5
Prion
Prion
added 2018/01/10 5:29 p.m.15 views

Cross site scripting

Multiple persistent stored Cross-Site-Scripting XSS vulnerabilities in the files /wb/admin/admintools/tool.php Droplet Description and /install/index.php Site Title in WebsiteBaker 2.10.0 allow attackers to insert persistent JavaScript code that gets reflected back to users in multiple areas in t...

4.3CVSS6.2AI score0.00632EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2018/01/10 12:0 a.m.58 views

Joomla Easydiscuss Component < 4.0.21 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the user’s browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body and a...

3.5CVSS5.6AI score0.01581EPSS
Exploits5
0day.today
0day.today
added 2018/01/10 12:0 a.m.28 views

WordPress Social Media Widget by Acurax 3.2.5 Plugin - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: Social Media Widget by Acurax CSRF Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://www.acurax.com/ Software Link:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2018/01/10 12:0 a.m.33 views

Joomla! Component Easydiscuss 4.0.21 - Cross-Site Scripting

Joomla! Component Easydiscuss 4.0.21 - Cross-Site Scripting Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the user’s browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body...

3.5CVSS0.01581EPSS
Exploits5
exploitpack
exploitpack
added 2018/01/10 12:0 a.m.12 views

WordPress Plugin Social Media Widget by Acurax 3.2.5 - Cross-Site Request Forgery

WordPress Plugin Social Media Widget by Acurax 3.2.5 - Cross-Site Request Forgery Exploit Title: Social Media Widget by Acurax CSRF Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://www.acurax.com/ Software Link:...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/01/10 12:0 a.m.27 views

WordPress Admin Menu Tree Page View 2.6.9 Plugin - Cross-Site Request Forgery / Privilege Escalation

Exploit for php platform in category web applications Exploit Title: Admin Menu Tree Page View CSRF, Privilege Escalation Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://eskapism.se/ Software Link:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2018/01/10 12:0 a.m.16 views

WordPress Plugin Admin Menu Tree Page View 2.6.9 - Cross-Site Request Forgery Privilege Escalation

WordPress Plugin Admin Menu Tree Page View 2.6.9 - Cross-Site Request Forgery Privilege Escalation Exploit Title: Admin Menu Tree Page View CSRF, Privilege Escalation Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage:...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/10 12:0 a.m.39 views

Joomla! Component Easydiscuss &lt; 4.0.21 - Cross-Site Scripting

Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the user’s browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body and add any html code after that, whenever a user tries to...

5.4CVSS5.5AI score0.01581EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/01/10 12:0 a.m.31 views

WordPress Plugin Social Media Widget by Acurax 3.2.5 - Cross-Site Request Forgery

Exploit Title: Social Media Widget by Acurax CSRF Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://www.acurax.com/ Software Link: https://wordpress.org/plugins/acurax-social-media-widget Version: 3.2.5 Tested on:...

7.4AI score
Exploits0
Rows per page
Query Builder