CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

exploitpack•added 2014/03/25 12:0 a.m.•13 views

Getsimple CMS 3.3.1 - Persistent Cross-Site Scripting

Getsimple CMS 3.3.1 - Persistent Cross-Site Scripting Exploit Title: etSimple CMS v3.3.1 Persistent Cross Site Scripting Google Dork: N/A Date: 24-03-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://get-simple.info/ Software Link: http://get-simple.info/download/ Version: v3.3.1...

6.8AI score

Vulnerability Lab•added 2014/03/25 12:0 a.m.•51 views

Dell SonicWall EMail Security 7.4.5 - Multiple Vulnerabilities

Document Title: =============== Dell SonicWall EMail Security 7.4.5 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1191 Dell SonicWall Security Bulletin:...

4.3CVSS0.6AI score0.04847EPSS

Exploits3

Hacker One•added 2014/03/16 11:30 a.m.•14 views

Phabricator: Persistent XSS: Editor link

The editor link used for external applications allows scheme other than http: or https:. Although the phutiltag function checks whether the scheme is javascript: to prevent XSS attacks see GitHub, it is straightforward to bypass this check by adding a whitespace character in between javascript an...

0.5AI score

Packet Storm•added 2014/03/13 12:0 a.m.•22 views

Ubee EVW3200 Cross Site Scripting

Exploit Title: Ubee EVW3200 - Multiple Persistent Cross Site Scripting Google Dork: N/A Date: 02-03-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.ubeeinteractive.com/ Software Link: http://www.ubeeinteractive.com/products/cable?fieldproductcatetorytid=20 Version: All Tested...

exploitpack•added 2014/03/13 12:0 a.m.•11 views

Ubee EVW3200 - Multiple Persistent Cross-Site Scripting Vulnerabilities

Ubee EVW3200 - Multiple Persistent Cross-Site Scripting Vulnerabilities Exploit Title: Ubee EVW3200 - Multiple Persistent Cross Site Scripting Google Dork: N/A Date: 02-03-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.ubeeinteractive.com/ Software Link:...

7AI score

0day.today•added 2014/03/13 12:0 a.m.•21 views

Ubee EVW3200 - Multiple Persistent Cross Site Scripting Vulnerability

Ubee EVW3200 suffers from multiple persistent cross site scripting vulnerabilities. Exploit Title: Ubee EVW3200 - Multiple Persistent Cross Site Scripting Google Dork: N/A Date: 02-03-2014 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.ubeeinteractive.com/ Software Link:...

6.8AI score

Exploit DB•added 2014/03/13 12:0 a.m.•25 views

Ubee EVW3200 - Multiple Persistent Cross-Site Scripting Vulnerabilities

0day.today•added 2014/03/05 12:0 a.m.•61 views

Ilch CMS 2.0 - Persistent XSS Vulnerability

Ilch CMS version 2.0 suffers from a cross site scripting vulnerability. Product: Ilch CMS Vendor: http://ilch.de Vulnerable Versions: 2.0 and probably prior Tested Version: 2.0 Advisory Publication: February 12, 2014 without technical details Vendor Notification: February 12, 2014 Public...

4.3CVSS5.9AI score0.03268EPSS

Exploits6

Packet Storm•added 2014/03/04 12:0 a.m.•30 views

ClickDesk 4.3 Cross Site Scripting

ClickDesk Multiple Persistent XSS Details ======================================================================================== Product: ClickDesk a cross platform live chat and support plugin Security-Risk: High Remote-Exploit: yes Vendor-URL: https://www.clickdesk.com/ Advisory-Status:...

6.4AI score0.00856EPSS

Exploits2

0day.today•added 2014/03/04 12:0 a.m.•68 views

SpagoBI 4.0 - Persistent XSS Vulnerability

Exploit for php platform in category web applications 1. Vulnerability Information CVE reference: CVE-2013-6232 CVSS v2 Base Score: 4 CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N Component/s: SpagoBI Class: Input Manipulation 2. Introduction SpagoBI1 is an Open Source Business Intelligence suite,...

7.1AI score0.03625EPSS

0day.today•added 2014/03/04 12:0 a.m.•71 views

SpagoBI 4.0 - Persistent HTML Script Insertion

Exploit for php platform in category web applications SpagoBI1 is an Open Source Business Intelligence suite, belonging to the free/open source SpagoWorld initiative, founded and supported by Engineering Group2. It offers a large range of analytical functions, a highly functional semantic layer...

4.3CVSS6.5AI score0.03196EPSS

exploitpack•added 2014/03/03 12:0 a.m.•42 views

SpagoBI 4.0 - Persistent HTML Script Insertion

SpagoBI 4.0 - Persistent HTML Script Insertion 01. Advisory Information Title: Persistent HTML Script Insertion permits offsite-bound forms Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: Medium 02...

4.3CVSS6.4AI score0.03196EPSS

Packet Storm•added 2014/03/03 12:0 a.m.•41 views

Joomla 3.2.2 Cross Site Scripting

============================================================== Title ...| Persistent pre-auth XSS in Joomla Version .| Joomla 3.2.2 Date ....| 3.03.2014 Found ...| HauntIT Blog Home ....| http://www.joomla.org ==============================================================...

0.1AI score

Tenable Nessus•added 2014/03/03 12:0 a.m.•27 views

Lexmark Printer Configuration Persistent XSS

The version of the remote Lexmark printer is potentially affected by a cross-site scripting vulnerability. An input validation error exists related to the 'General Settings' configuration page and the 'Location' and 'Contact Name' parameters that could allow persistent cross-site scripting attack...

3.5CVSS5.4AI score0.01713EPSS

Exploits0References2

Packet Storm•added 2014/03/02 12:0 a.m.•48 views

SpagoBI 4.0 HTML Injection

Advisory Information Title: Persistent HTML Script Insertion permits offsite-bound forms Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: Medium 02. Vulnerability Information CVE reference: CVE-2013-6233...

4.3CVSS6.5AI score0.03196EPSS

Packet Storm•added 2014/03/02 12:0 a.m.•62 views

SpagoBI 4.0 Stored Cross Site Scripting

Advisory Information Title: Persistent Cross-Site Scripting XSS in SpagoBI Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: High 02. Vulnerability Information CVE reference: CVE-2013-6232 CVSS v2 Base...

3.5CVSS6.5AI score0.03625EPSS

Exploit DB•added 2014/03/01 12:0 a.m.•43 views

Oracle Demantra 12.2.1 - Persistent Cross-Site Scripting

Details: The TaskSender area is vulnerable to a stored cross-site scripting vulnerability. Impact: An attacker could exploit this flaw to get active HTML or script code executed in an authenticated user’s browser. Cross-site Scripting may be used to perform attacks such as session hijacking by...

Vulnerability Lab•added 2014/02/28 12:0 a.m.•38 views

Microsoft Office 365 Outlook - Persistent Vulnerability

Document Title: =============== Microsoft Office 365 Outlook - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=811 Microsoft Security Response Center MSRC ID: 14095 Release Date: ============= 2014-02-28 Vulnerability Laboratory ...

7.1AI score

Packet Storm•added 2014/02/28 12:0 a.m.•23 views

EPESI CRM 1.5.5 Cross Site Scripting

============================================================== Title ...| EPESI CRM vulnerable to persistent XSS Version .| epesi-1.5.5-20140113.zip Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| http://epe.si/download ==============================================================...