Lucene search
+L

322 matches found

CNVD
CNVD
added 2016/02/24 12:0 a.m.1 views

Redaxo CMS Cross-Site Scripting Vulnerability

Redaxo CMS is an open source Web portal content management system CMS. The system supports custom modules , plug-in extensions , project backup and so on. A cross-site scripting vulnerability exists in Redaxo CMS. The vulnerability allows attackers to steal cookie-based authentication, take contr...

6.4AI score
Exploits0References1
CNVD
CNVD
added 2016/02/24 12:0 a.m.1 views

Redaxo CMS HTML Injection Vulnerability

Redaxo CMS is an open source Web portal content management system CMS. The system supports custom modules , plug-in extensions , project backup and so on. HTML injection vulnerabilities exist in Redaxo CMS. Allow attackers to exploit these vulnerabilities to steal cookie-based authentication, tak...

7.3AI score
Exploits0References1
CNVD
CNVD
added 2016/02/24 12:0 a.m.3 views

Redaxo CMS SQL Injection Vulnerability

Redaxo CMS is an open source Web portal content management system CMS. The system supports custom modules , plug-in extensions , project backup and so on. SQL injection vulnerabilities exist in Redaxo CMS. Allows attackers to exploit these vulnerabilities to steal cookie-based authentication, tak...

8.1AI score
Exploits0References1
exploitpack
exploitpack
added 2016/02/17 12:0 a.m.24 views

Redaxo 5.0.0 - Multiple Vulnerabilities

Redaxo 5.0.0 - Multiple Vulnerabilities === LSE Leading Security Experts GmbH - Security Advisory 2016-01-18 === Redaxo CMS contains multiple vulnerabilities ------------------------------------------------------------- Problem Overview ================ Technical Risk: high Likelihood of...

0.4AI score
Exploits0
0day.today
0day.today
added 2016/02/17 12:0 a.m.34 views

Redaxo CMS 5.0.0 - Multiple Vulnerabilities

Exploit for php platform in category web applications Redaxo CMS contains multiple vulnerabilities ------------------------------------------------------------- Problem Overview ================ Technical Risk: high Likelihood of Exploitation: medium Vendor: https://www.redaxo.org/ Tested version...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/02/17 12:0 a.m.34 views

Redaxo 5.0.0 - Multiple Vulnerabilities

=== LSE Leading Security Experts GmbH - Security Advisory 2016-01-18 === Redaxo CMS contains multiple vulnerabilities ------------------------------------------------------------- Problem Overview ================ Technical Risk: high Likelihood of Exploitation: medium Vendor:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/02/16 12:0 a.m.45 views

Redaxo CMS 5.0.0 Cross Site Scripting / SQL Injection

=== LSE Leading Security Experts GmbH - Security Advisory 2016-01-18 === Redaxo CMS contains multiple vulnerabilities ------------------------------------------------------------- Problem Overview ================ Technical Risk: high Likelihood of Exploitation: medium Vendor:...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities

No description provided by source. Script: Redaxo CMS Vendor: http://www.redaxo.de Discovered: beford xbefordx gmail com Redaxo 3.2 - 3.1 - 3.0 ./redaxo/include/addons/imageresize/pages/index.inc.php?REXINCLUDEPATH=attacker Redaxo 3.0...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

redaxo cms 4.2.1 - Remote File Inclusion Vulnerability

No description provided by source...

7.1AI score
Exploits0
NVD
NVD
added 2012/08/13 8:55 p.m.24 views

CVE-2012-3869

Cross-site scripting XSS vulnerability in include/classes/class.rexlist.inc.php in REDAXO 4.3.x and 4.4 allows remote attackers to inject arbitrary web script or HTML via the subpage parameter to index.php...

4.3CVSS5.6AI score0.01206EPSS
Exploits3References5
Prion
Prion
added 2012/08/13 8:55 p.m.24 views

Cross site scripting

Cross-site scripting XSS vulnerability in include/classes/class.rexlist.inc.php in REDAXO 4.3.x and 4.4 allows remote attackers to inject arbitrary web script or HTML via the subpage parameter to index.php...

4.3CVSS6.2AI score0.01206EPSS
Exploits3References5Affected Software1
Cvelist
Cvelist
added 2012/08/13 8:0 p.m.32 views

CVE-2012-3869

Cross-site scripting XSS vulnerability in include/classes/class.rexlist.inc.php in REDAXO 4.3.x and 4.4 allows remote attackers to inject arbitrary web script or HTML via the subpage parameter to index.php...

5.6AI score0.01206EPSS
Exploits3References5
CVE
CVE
added 2012/08/13 8:0 p.m.57 views

CVE-2012-3869

CVE-2012-3869 (Redaxo XSS) : A cross-site scripting vulnerability exists in Redaxo 4.3.x and 4.4 where input passed via the subpage parameter to index.php (when page is set to user or template) is not properly sanitized, allowing remote attackers to inject arbitrary HTML/JavaScript. Exploitation ...

4.3CVSS5.8AI score0.01206EPSS
Exploits3References5Affected Software1
securityvulns
securityvulns
added 2012/08/13 12:0 a.m.88 views

Cross-Site Scripting &#40;XSS&#41; in Redaxo

Advisory ID: HTB23098 Product: Redaxo Vendor: Redaxo team Vulnerable Versions: 4.4 and probably prior Tested Version: 4.4 Vendor Notification: 4 July 2012 Vendor Patch: 23 July 2012 Public Disclosure: 25 July 2012 Vulnerability Type: Cross-Site Scripting XSS CVE Reference: CVE-2012-3869 CVSSv2 Ba...

4.3CVSS6.6AI score0.01206EPSS
Exploits3
0day.today
0day.today
added 2012/07/26 12:0 a.m.47 views

Redaxo 4.4 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Vendor: Redaxo team Vulnerable Versions: 4.4 and probably prior Tested Version: 4.4 Vendor Notification: 4 July 2012 Vendor Patch: 23 July 2012 Public Disclosure: 25 July 2012 Vulnerability Type: Cross-Site Scripting XSS CVE Reference:...

7.1AI score0.01206EPSS
Exploits3
Packet Storm
Packet Storm
added 2012/07/25 12:0 a.m.55 views

Redaxo 4.4 Cross Site Scripting

Advisory ID: HTB23098 Product: Redaxo Vendor: Redaxo team Vulnerable Versions: 4.4 and probably prior Tested Version: 4.4 Vendor Notification: 4 July 2012 Vendor Patch: 23 July 2012 Public Disclosure: 25 July 2012 Vulnerability Type: Cross-Site Scripting XSS CVE Reference: CVE-2012-3869 CVSSv2 Ba...

4.3CVSS6.7AI score0.01206EPSS
Exploits3
Exploit DB
Exploit DB
added 2012/07/25 12:0 a.m.19 views

REDAXO 'subpage' Parameter Cross Site Scripting Vulnerability

REDAXO 'subpage' Parameter Cross Site Scripting Vulnerability. Webapps exploit for php platform source: http://www.securityfocus.com/bid/54670/info REDAXO is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issu...

0.1AI score
Exploits0
htbridge
htbridge
added 2012/07/04 12:0 a.m.61 views

Cross-Site Scripting (XSS) in Redaxo

High-Tech Bridge Security Research Lab has discovered vulnerability in Redaxo, which can be exploited to perform Cross-Site Scripting XSS attacks. 1 Cross-Site Scripting XSS in Redaxo: CVE-2012-3869 1.1 Input passed via the "subpage" GET parameter to /redaxo/index.php when "page" is set to "user"...

4.3CVSS5.9AI score0.01206EPSS
Exploits3Affected Software1
0day.today
0day.today
added 2010/04/18 12:0 a.m.50 views

Redaxo CMS 4.2.1 Remote File Inclusion Vulnerability

Exploit for php platform in category web applications ==================================================== Redaxo CMS 4.2.1 Remote File Inclusion Vulnerability ==================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' ...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/04/18 12:0 a.m.29 views

Redaxo 4.2.1 - Remote File Inclusion

Redaxo 4.2.1 - Remote File Inclusion ======================================================================== Redaxo CMS 4.2.1 Remote File Inclusion Vulnerability ========================================================================...

0.1AI score
Exploits0
Rows per page
Query Builder