Lucene search
+L

121 matches found

OSV
OSV
•added 2019/09/20 4:15 p.m.•4 views

CVE-2019-16643

An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the articleedit area...

5.4CVSS6.1AI score
Exploits0References1
NVD
NVD
•added 2019/09/20 4:15 p.m.•11 views

CVE-2019-16643

An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the articleedit area...

5.4CVSS5.2AI score0.00583EPSS
Exploits1References1
Prion
Prion
•added 2019/09/20 4:15 p.m.•13 views

Cross site scripting

An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the articleedit area...

3.5CVSS5.2AI score0.00583EPSS
Exploits1References1Affected Software1
CVE
CVE
•added 2019/09/20 3:6 p.m.•111 views

CVE-2019-16643

CVE-2019-16643 affects ZrLog 2.1.1 with a stored XSS vulnerability in the article_edit area. Connected documents confirm the issue across multiple feeds (NVD, Red Hat, vendor/public listings). The available descriptions consistently describe a stored XSS condition, but there are no details here o...

5.4CVSS5.2AI score0.00583EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
•added 2019/09/20 3:6 p.m.•19 views

CVE-2019-16643

An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the articleedit area...

5.2AI score0.00583EPSS
Exploits1References1
NVD
NVD
•added 2019/06/19 6:15 p.m.•11 views

CVE-2018-17079

An issue was discovered in ZRLOG 2.0.1. There is a Stored XSS vulnerability in the nickname field of the comment area...

6.1CVSS5.9AI score0.00799EPSS
Exploits1References2
OSV
OSV
•added 2019/06/19 6:15 p.m.•4 views

CVE-2018-17079

An issue was discovered in ZRLOG 2.0.1. There is a Stored XSS vulnerability in the nickname field of the comment area...

6.1CVSS5.8AI score
Exploits0References2
Prion
Prion
•added 2019/06/19 6:15 p.m.•16 views

Cross site scripting

An issue was discovered in ZRLOG 2.0.1. There is a Stored XSS vulnerability in the nickname field of the comment area...

4.3CVSS5.9AI score0.00799EPSS
Exploits1References2Affected Software1
CVE
CVE
•added 2019/06/19 5:37 p.m.•77 views

CVE-2018-17079

CVE-2018-17079 affects ZRLOG 2.0.1 and involves a stored XSS vulnerability in the nickname field of the comment area. The provided documents confirm the issue but do not provide any remediation steps within the supplied content. Exploitation status and in-the-wild details are not described in the...

6.1CVSS5.8AI score0.00799EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
•added 2019/06/19 5:37 p.m.•18 views

CVE-2018-17079

An issue was discovered in ZRLOG 2.0.1. There is a Stored XSS vulnerability in the nickname field of the comment area...

6AI score0.00799EPSS
Exploits1References2
CNVD
CNVD
•added 2019/03/08 12:0 a.m.•6 views

ZrLog Cross-Site Scripting Vulnerability

ZrLog is a blogging system developed using the Java language. A cross-site scripting vulnerability exists in the file upload feature in ZrLog version 2.0.3. A remote attacker can exploit this vulnerability by injecting arbitrary web script or HTML using a specially crafted attached/file/ pathname...

6.1CVSS6.1AI score0.00865EPSS
Exploits1References1
OSV
OSV
•added 2019/03/07 11:29 p.m.•6 views

CVE-2018-17421

An issue was discovered in ZrLog 2.0.3. There is stored XSS in the file upload area via a crafted attached/file/ pathname...

6.1CVSS5.8AI score0.00865EPSS
Exploits1References1
Prion
Prion
•added 2019/03/07 11:29 p.m.•16 views

Cross site scripting

An issue was discovered in ZrLog 2.0.3. There is stored XSS in the file upload area via a crafted attached/file/ pathname...

4.3CVSS5.9AI score0.00865EPSS
Exploits1References1Affected Software1
NVD
NVD
•added 2019/03/07 11:29 p.m.•14 views

CVE-2018-17420

An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter...

7.2CVSS7.3AI score0.01326EPSS
Exploits1References1
OSV
OSV
•added 2019/03/07 11:29 p.m.•4 views

CVE-2018-17420

An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter...

7.2CVSS5.8AI score0.01326EPSS
Exploits1References1
Prion
Prion
•added 2019/03/07 11:29 p.m.•20 views

Sql injection

An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter...

6.5CVSS7.3AI score0.01326EPSS
Exploits1References1Affected Software1
NVD
NVD
•added 2019/03/07 11:29 p.m.•13 views

CVE-2018-17421

An issue was discovered in ZrLog 2.0.3. There is stored XSS in the file upload area via a crafted attached/file/ pathname...

6.1CVSS5.9AI score0.00865EPSS
Exploits1References1
CVE
CVE
•added 2019/03/07 10:0 p.m.•40 views

CVE-2018-17421

ZrLog 2.0.3 contains a stored XSS vulnerability in the file upload area, exploitable via a crafted attached/file/ pathname. This CVE (CVE-2018-17421) is supported by multiple references (e.g., CNVD-2019-13264 and NVD entry), and the vulnerability description explicitly states the stored XSS condi...

6.1CVSS5.8AI score0.00865EPSS
Exploits1References1Affected Software1
CVE
CVE
•added 2019/03/07 10:0 p.m.•38 views

CVE-2018-17420

Summary: CVE-2018-17420 affects ZrLog 2.0.3 with a SQL injection in the article management search box via the keywords parameter. The vulnerability is demonstrated in the NVD entry (CVSS v3 base 7.2, HIGH; vectors: NETWORK/LOW for exploitability, requires HIGH privileges, no user interaction). Th...

7.2CVSS7.3AI score0.01326EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
•added 2019/03/07 10:0 p.m.•17 views

CVE-2018-17421

An issue was discovered in ZrLog 2.0.3. There is stored XSS in the file upload area via a crafted attached/file/ pathname...

6AI score0.00865EPSS
Exploits1References1
Rows per page
Query Builder