Lucene search
K

7 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Claroline 1.8.9 announcements/announcements.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Claroline 1.8.9 document/document.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute...

7.1AI score
Exploits0
NVD
NVD
added 2008/07/25 4:41 p.m.20 views

CVE-2008-3315

Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...

4.3CVSS5.6AI score0.02028EPSS
Exploits1References8
Prion
Prion
added 2008/07/25 4:41 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...

4.3CVSS5.8AI score0.04863EPSS
Exploits2References8Affected Software1
Cvelist
Cvelist
added 2008/07/25 4:0 p.m.27 views

CVE-2008-3315

Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...

5.6AI score0.02028EPSS
Exploits1References8
CVE
CVE
added 2008/07/25 4:0 p.m.55 views

CVE-2008-3315

CVE-2008-3315 refers to multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.8.10, exploitable via the query string on numerous files (e.g., announcements/messages.php, lostPassword.php, profile.php in auth/; calendar/myagenda.php; group/group.php; learningPath.; tracking/ ; user/*;...

4.3CVSS5.8AI score0.02028EPSS
Exploits1References8Affected Software1
Exploit DB
Exploit DB
added 2008/07/15 12:0 a.m.20 views

Claroline 1.8.9 - 'phpBB/reply.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...

7.4AI score
Exploits0
Rows per page
Query Builder