Lucene search
K

278 matches found

Packet Storm
Packet Storm
added 2017/08/23 12:0 a.m.118 views

Progress Sitefinity 9.1 XSS / Session Management / Open Redirect

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Progress Sitefinity vulnerable version: 9.1 fixed version: 10.1 CVE number: - impact: High homepage: http://www.sitefinity.com |...

0.1AI score
Exploits0
0day.today
0day.today
added 2017/08/23 12:0 a.m.60 views

Progress Sitefinity 9.1 XSS Vulnerability

Progress Sitefinity version 9.1 suffers from cross site scripting, broken session management, and open redirection vulnerabilities. ======================================================================= title: Multiple vulnerabilities product: Progress Sitefinity vulnerable version: 9.1 fixed...

7.2AI score
Exploits0
OSV
OSV
added 2017/07/03 7:29 p.m.2 views

CVE-2017-9248

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leadi...

9.8CVSS5.9AI score0.75098EPSS
Exploits5References5
NVD
NVD
added 2017/07/03 7:29 p.m.31 views

CVE-2017-9248

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leadi...

9.8CVSS9.4AI score0.75098EPSS
Exploits5References5
Cvelist
Cvelist
added 2017/07/03 7:0 p.m.43 views

CVE-2017-9248

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leadi...

9.4AI score0.75098EPSS
Exploits5References4
CVE
CVE
added 2017/07/03 7:0 p.m.1360 views

CVE-2017-9248

CVE-2017-9248 affects Progress Telerik UI for ASP.NET AJAX (and Sitefinity) prior to R2 2017 SP1 / 10.0.6412.0. The vulnerability lies in Telerik.Web.UI.dll handling of the Telerik.Web.UI.DialogParametersEncryptionKey and the MachineKey, enabling an attacker to defeat cryptographic protection and...

9.8CVSS9.2AI score0.75098EPSS
In wildExploits5References5Affected Software2
ATTACKERKB
ATTACKERKB
added 2017/07/03 12:0 a.m.117 views

CVE-2017-9248

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leadi...

9.8CVSS8.9AI score0.75098EPSS
In wildExploits5References6
securityvulns
securityvulns
added 2015/01/19 12:0 a.m.126 views

Sitefinity Enterprise v7.2.53 - Persistent Vulnerability

Document Title: =============== Sitefinity Enterprise v7.2.53 - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1369 Release Date: ============= 2015-01-06 Vulnerability Laboratory ID VL-ID: ====================================...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2015/01/14 12:0 a.m.52 views

Sitefinity Enterprise 7.2.53 Script Insertion

Document Title: =============== Sitefinity Enterprise v7.2.53 - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1369 Release Date: ============= 2015-01-06 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2015/01/06 12:0 a.m.41 views

Sitefinity Enterprise v7.2.53 - Persistent UI Vulnerability

Document Title: =============== Sitefinity Enterprise v7.2.53 - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1369 Release Date: ============= 2015-01-06 Vulnerability Laboratory ID VL-ID: ===================================...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2015/01/06 12:0 a.m.35 views

Sitefinity Enterprise v7.2.53 - Persistent UI Vulnerability

Document Title: =============== Sitefinity Enterprise v7.2.53 - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1369 Release Date: ============= 2015-01-06 Vulnerability Laboratory ID VL-ID: ===================================...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Sitefinity CMS (ASP.NET) Shell Upload Vulnerability

No description provided by source. ============================================================= Sitefinity CMS ASP.NET Shell Upload Vulnerability ============================================================= Exploit Title: Sitefinity CMS ASP.NET Shell Upload Vulnerability DDate: 16/11/2010 Autho...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/12/10 12:0 a.m.122 views

Sitefinity CMS Detection

The remote host hosts Sitefinity, a web-based content management system CMS written in ASP.NET. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid51118; scriptversion"1.7";...

5.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/12/10 12:0 a.m.43 views

Sitefinity CMS Arbitrary File Upload

The Sitefinity ASP.NET CMS install hosted on the remote web server may be affected by an arbitrary file upload vulnerability because it does not properly sanitize input data. Note that Nessus did not actually test for the flaw but instead has relied on the version in Sitefinity's banner...

5.8AI score
Exploits0References1
Packet Storm
Packet Storm
added 2010/11/18 12:0 a.m.38 views

Sitefinity CMS Shell Upload

============================================================= Sitefinity CMS ASP.NET Shell Upload Vulnerability ============================================================= Exploit Title: Sitefinity CMS ASP.NET Shell Upload Vulnerability DDate: 16/11/2010 Author: Net.Edit0r Software Link:...

0.1AI score
Exploits0
0day.today
0day.today
added 2010/11/18 12:0 a.m.40 views

Sitefinity CMS (ASP.NET) Shell Upload Vulnerability

Exploit for asp platform in category web applications =================================================== Sitefinity CMS ASP.NET Shell Upload Vulnerability =================================================== Exploit Title: Sitefinity CMS ASP.NET Shell Upload Vulnerability DDate: 16/11/2010 Author...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/11/17 12:0 a.m.16 views

Sitefinity CMS - ASP.NET Arbitrary File Upload

Sitefinity CMS - ASP.NET Arbitrary File Upload ============================================================= Sitefinity CMS ASP.NET Shell Upload Vulnerability ============================================================= Exploit Title: Sitefinity CMS ASP.NET Shell Upload Vulnerability DDate:...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2010/11/17 12:0 a.m.48 views

Sitefinity CMS - 'ASP.NET' Arbitrary File Upload

============================================================= Sitefinity CMS ASP.NET Shell Upload Vulnerability ============================================================= Exploit Title: Sitefinity CMS ASP.NET Shell Upload Vulnerability DDate: 16/11/2010 Author: Net.Edit0r Software Link:...

7.4AI score
Exploits0
Rows per page
Query Builder