Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-6842

Malware in sbrugna...

8.8CVSS8.8AI score0.00538EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-6437

Malware in sbrugna...

6.1CVSS6.3AI score0.00675EPSS
Exploits1References2
CNVD
CNVD
added 2018/08/07 12:0 a.m.3 views

CSRF Vulnerability in School Worry-free Enterprise Website System v1.7

School carefree enterprise website system Xiao5uCompany is a set of enterprise-oriented rapid website building system. The system uses Div and CSS layout, compatible with IE and other browsers. There is a CSRF vulnerability in version v1.7 of Xiao5uCompany, which can be exploited by remote...

8.8CVSS8.8AI score0.00538EPSS
Exploits1
OSV
OSV
added 2018/08/06 3:29 p.m.4 views

CVE-2018-14960

Xiao5uCompany 1.7 has CSRF via admin/Admin.asp...

8.8CVSS5.8AI score0.00538EPSS
Exploits1References2
NVD
NVD
added 2018/08/06 3:29 p.m.17 views

CVE-2018-14960

Xiao5uCompany 1.7 has CSRF via admin/Admin.asp...

8.8CVSS8.8AI score0.00538EPSS
Exploits1References2
CVE
CVE
added 2018/08/06 3:0 p.m.42 views

CVE-2018-14960

CVE-2018-14960 affects Xiao5uCompany 1.7. The vulnerability is a CSRF via admin/Admin.asp, allowing remote attackers to add administrator or other user accounts (per CNVD CNVD-2018-17499). Impact and exploit details: the CSRF could compromise account management, potentially affecting all users th...

8.8CVSS8.7AI score0.00538EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/08/06 3:0 p.m.19 views

CVE-2018-14960

Xiao5uCompany 1.7 has CSRF via admin/Admin.asp...

8.8AI score0.00538EPSS
Exploits1References2
NVD
NVD
added 2018/07/23 8:29 a.m.13 views

CVE-2018-14527

Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements...

6.1CVSS6.1AI score0.00675EPSS
Exploits1References1
Prion
Prion
added 2018/07/23 8:29 a.m.12 views

Cross site scripting

Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements...

4.3CVSS6AI score0.00675EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/07/23 8:0 a.m.16 views

CVE-2018-14527

Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements...

6.1AI score0.00675EPSS
Exploits1References1
CVE
CVE
added 2018/07/23 8:0 a.m.41 views

CVE-2018-14527

CVE-2018-14527 affects Xiao5uCompany/“Xiao5uCompany” v1.7. Reported as an XSS vulnerability where Feedback.asp is not adequately protected by Safe.asp (e.g., it handles SCRIPT/IMG but not VIDEO). CNVD sources describe a stored XSS in School Worry-free Enterprise Website System v1.7, enabling an a...

6.1CVSS6AI score0.00675EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/07/23 12:0 a.m.1 views

Storage-based Cross-site Scripting Vulnerability in School Worry-free Enterprise Website System v1.7

School carefree enterprise website system Xiao5uCompany is a set of company and enterprise-oriented website building system. A stored cross-site scripting vulnerability exists in XiaowuCompany v1.7. An attacker can use the vulnerability to insert malicious js code into the page, obtain user cooki...

6.1CVSS6AI score0.00675EPSS
Exploits1References1
Rows per page
Query Builder