Lucene search
K

49 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7549

Malware in sbrugna...

6.1CVSS6.3AI score0.00947EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7553

Malware in sbrugna...

8.8CVSS8.8AI score0.00538EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-7548

Malware in sbrugna...

6.1CVSS6.3AI score0.00474EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9612

Malware in sbrugna...

6.1CVSS6.3AI score0.00803EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7554

Malware in sbrugna...

6.1CVSS6.2AI score0.00699EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7550

Malware in sbrugna...

6.1CVSS6.3AI score0.00947EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7551

Malware in sbrugna...

9.8CVSS9.5AI score0.00792EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-7547

Malware in sbrugna...

5.3CVSS5.5AI score0.00932EPSS
Exploits1References2
OSV
OSV
added 2018/10/01 11:29 p.m.4 views

CVE-2018-17870

An issue was discovered in BTITeam XBTIT 2.5.4. The "returnto" parameter of accountchange.php is vulnerable to an open redirect, a different vulnerability than CVE-2018-15683...

6.1CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2018/10/01 11:29 p.m.13 views

Open redirect

An issue was discovered in BTITeam XBTIT 2.5.4. The "returnto" parameter of accountchange.php is vulnerable to an open redirect, a different vulnerability than CVE-2018-15683...

5.8CVSS6.1AI score0.00803EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/09/07 12:0 a.m.5 views

BTITeam XBTIT cross-site scripting vulnerability (CNVD-2018-19430)

BTITeam XBTIT is an open source bittorrent tracking system. A cross-site scripting vulnerability exists in BTITeam XBTIT. Attackers can use the 'String.replace' function and 'eval' function to exploit the vulnerability to bypass the includes/crkprotection.php script of the anti-cross-site scripti...

5.3CVSS5.5AI score0.00932EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/06 12:0 a.m.3 views

BTITeam XBTIT Cross-Site Scripting Vulnerability (CNVD-2019-28273)

XBTIT is an open source tracking software. A stored cross-site scripting vulnerability exists in newsfeed /index.php?page=viewnews in BTITeam XBTIT 2.5.4. An attacker can exploit this vulnerability to conduct a cross-site scripting attack via the headline of a news item...

6.1CVSS5.9AI score0.00474EPSS
Exploits1References1
NVD
NVD
added 2018/09/05 9:29 p.m.18 views

CVE-2018-16361

An issue was discovered in BTITeam XBTIT 2.5.4. news.php allows XSS via the id parameter...

6.1CVSS6AI score0.00947EPSS
Exploits1References2
OSV
OSV
added 2018/09/05 9:29 p.m.4 views

CVE-2018-16361

An issue was discovered in BTITeam XBTIT 2.5.4. news.php allows XSS via the id parameter...

6.1CVSS5.8AI score0.00947EPSS
Exploits1References2
NVD
NVD
added 2018/09/05 9:29 p.m.15 views

CVE-2018-15684

An issue was discovered in BTITeam XBTIT. PHP error logs are stored in an open directory /include/logs using predictable file names, which can lead to full path disclosure and leakage of sensitive data...

5.3CVSS5.2AI score0.00961EPSS
Exploits1References1
OSV
OSV
added 2018/09/05 9:29 p.m.4 views

CVE-2018-15684

An issue was discovered in BTITeam XBTIT. PHP error logs are stored in an open directory /include/logs using predictable file names, which can lead to full path disclosure and leakage of sensitive data...

5.3CVSS5.8AI score0.00961EPSS
Exploits1References1
OSV
OSV
added 2018/09/05 9:29 p.m.3 views

CVE-2018-15678

An issue was discovered in BTITeam XBTIT 2.5.4. The "act" parameter in the sign-up page available at /index.php?page=signup is vulnerable to reflected cross-site scripting...

6.1CVSS5.3AI score0.00947EPSS
Exploits1References2
NVD
NVD
added 2018/09/05 9:29 p.m.19 views

CVE-2018-15682

An issue was discovered in BTITeam XBTIT. Due to a lack of cross-site request forgery protection, it is possible to automate the action of sending private messages to users by luring an authenticated user to a web page that automatically submits a form on their behalf...

8.8CVSS8.6AI score0.00538EPSS
Exploits1References1
NVD
NVD
added 2018/09/05 9:29 p.m.16 views

CVE-2018-15680

An issue was discovered in BTITeam XBTIT 2.5.4. The hashed passwords stored in the xbtitusers table are stored as unsalted MD5 hashes, which makes it easier for context-dependent attackers to obtain cleartext values via a brute-force attack...

9.8CVSS9.2AI score0.00792EPSS
Exploits1References1
OSV
OSV
added 2018/09/05 9:29 p.m.2 views

CVE-2018-15679

An issue was discovered in BTITeam XBTIT 2.5.4. The "keywords" parameter in the search function available at /index.php?page=forums&action=search is vulnerable to reflected cross-site scripting...

6.1CVSS5.3AI score
Exploits0References2
Rows per page
Query Builder