19 matches found
EUVD-2020-7845
Malware in sbrugna...
EUVD-2017-18697
Malware in sbrugna...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
Quali CloudShell Cross-Site Scripting Vulnerability (CNVD-2021-06529)
Quali CloudShell is a cloud service from Quali USA for managing infrastructure provisioning, cloud orchestration, automated deployments and more in cloud environments. A cross-site scripting vulnerability exists in Quali CloudShell version 9.3 that originates on the login page and can be exploite...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
Design/Logic Flaw
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
CVE-2020-15864
Quali CloudShell 9.3 contains a cross-site scripting (XSS) flaw in the login page. An attacker can craft a URL including a username field containing constructor.constructor, which executes a payload when the user visits /Account/Login. Public references come from CVE-2020-15864 (NVD entry) and re...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
CVE-2017-9767
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
CVE-2017-9767
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
CVE-2017-9767
CVE-2017-9767 describes multiple stored XSS vulnerabilities in Quali CloudShell prior to version 8. The flaws allow remote authenticated users to inject arbitrary HTML/script via several parameters across UI functions: RM/Reservation/ReserveNew (Name, Description), RM/Topology/Update (Description...
CVE-2017-9767
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross Site Scripting Vulnerability
Exploit for windows platform in category web applications Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767...
Quali CloudShell Cross-Site Scripting Vulnerability
Quali CloudShell is a suite of cloud sandboxing software for delivering full-stack IT environments in hybrid clouds from Quali System, Israel. A cross-site scripting vulnerability exists in versions prior to Quali CloudShell 8. The vulnerability can be exploited by remote attackers to inject...
Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross-Site Scripting
Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767 ========================================================== Overview Quali CloudShell v7.1.0.6508...
Quali CloudShell 7.1.0.6508 (Patch 6) Cross Site Scripting
Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767 ========================================================== Overview Quali CloudShell v7.1.0.6508...
Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross-Site Scripting
Quali CloudShell 7.1.0.6508 Patch 6 - Persistent Cross-Site Scripting Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767...