Lucene search
K

237 matches found

CNVD
CNVD
added 2019/04/28 12:0 a.m.3 views

Cybozu Garoon Cross-Site Scripting Vulnerability (CNVD-2019-12700)

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. A cross-site scripting vulnerability exists in Cybozu Garoon versions 4.0.0 through 4.10.1, which originates from...

6.1CVSS6.4AI score0.0104EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/28 12:0 a.m.3 views

Cybozu Garoon Cross-Site Scripting Vulnerability (CNVD-2019-12707)

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. A cross-site scripting vulnerability exists in Cybozu Garoon versions 4.0.0 through 4.6.3, which originates from ...

6.1CVSS6.4AI score0.01067EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/28 12:0 a.m.2 views

Cybozu Garoon Cross-Site Scripting Vulnerability (CNVD-2019-12699)

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. A cross-site scripting vulnerability exists in Cybozu Garoon versions 4.0.0 through 4.10.1, which originates from...

6.1CVSS6.4AI score0.0104EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/25 12:0 a.m.2 views

IBM Sterling B2B Integrator Cross-Site Scripting Vulnerability (CNVD-2019-14608)

IBM Sterling B2B Integrator is a suite of software from IBM USA that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B processes with diverse partner communities. A cross-site scripting vulnerability exists in IBM Sterling B...

5.4CVSS6.3AI score0.00673EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/17 12:0 a.m.3 views

Cross-Site Scripting Vulnerabilities in Multiple ZyXEL Products

ZyXEL ZyWall 310 and others are products of Taiwan, China-based ZyXEL Corporation.ZyXEL ZyWall 310 is a 310 series VPN firewall appliance.ZyXEL ZyWall 110 is a 110 series VPN firewall appliance.ZyXEL USG1900 is a next-generation unified security gateway appliance. A cross-site scripting...

6.1CVSS6.4AI score0.2095EPSS
Exploits3References1
CNVD
CNVD
added 2019/04/10 12:0 a.m.2 views

Materialize Cross-Site Scripting Vulnerability

Materialize is a modern responsive front-end framework based on Material Design. A cross-site scripting vulnerability exists in Materialize 1.0.0 and prior versions, which stems from a lack of proper validation of client-side data in the WEB application. An attacker can exploit this vulnerability...

6.1CVSS6.4AI score0.00795EPSS
Exploits1References1
CNVD
CNVD
added 2019/04/10 12:0 a.m.2 views

Azure DevOps Server Cross-Site Scripting Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as sharing code, work tracking, and software distribution. A cross-site scripting vulnerability exists in Microsoft Azure DevOps Server 2019, whi...

6.1CVSS6.3AI score0.01983EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/10 12:0 a.m.2 views

Materialize cross-site scripting vulnerability (CNVD-2019-12908)

Materialize is a modern responsive front-end framework based on Material Design. A cross-site scripting vulnerability exists in Materialize 1.0.0 and prior versions, which stems from a lack of proper validation of client-side data in the WEB application. An attacker can exploit this vulnerability...

6.1CVSS6.4AI score0.00788EPSS
Exploits1References1
CNVD
CNVD
added 2019/04/01 12:0 a.m.2 views

Palo Alto Networks Expedition Migration Tool Cross-Site Scripting Vulnerability

Palo Alto Networks Expedition Migration Tool is a security policy configuration migration tool from Palo Alto Networks, USA. A cross-site scripting vulnerability exists in Palo Alto Networks Expedition Migration Tool version 1.1.8 and prior versions, which stems from a lack of proper validation o...

4.8CVSS6.3AI score0.01083EPSS
Exploits1References1
CNVD
CNVD
added 2019/03/21 12:0 a.m.2 views

PrinterOn Enterprise Cross-Site Scripting Vulnerability

PrinterOn Enterprise is a secure cloud printing solution from PrinterOn Canada. The solution supports printing from laptops, desktops and mobile devices connected to printers. A cross-site scripting vulnerability exists in PrinterOn Enterprise version 4.1.4, which stems from a lack of proper...

5.4CVSS6.4AI score0.00644EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.38 views

Silentum Uploader 1.4.0 - Remote File Deletion Exploit

No description provided by source. Vendor: http://hypersilence.net Versions: Silentum Uploader 1.4.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=2 ---- Due to insufficient validation of client-side data, we...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/01/19 12:0 a.m.19 views

PHPAds 2.0 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ========================================== PHPAds 2.0 Multiple Remote Vulnerabilities ========================================== Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critica...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/01/19 12:0 a.m.14 views

phpads 2.0 - Multiple Vulnerabilities

phpads 2.0 - Multiple Vulnerabilities Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=8 ---- First, we need to acquire administrative access. We point our browser...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/01/19 12:0 a.m.37 views

Ninja Blog 4.8 - Cross-Site Request Forgery/HTML Injection

Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at https://www.push55.co.uk/index.php?s=ad&id=7 ---- Due to insufficient validation of client-side data, we can inject script directly into the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/01/19 12:0 a.m.34 views

phpads 2.0 - Multiple Vulnerabilities

Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=8 ---- First, we need to acquire administrative access. We point our browser at...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/01/12 12:0 a.m.17 views

Silentum Uploader 1.4.0 File Deletion

Vendor: http://hypersilence.net Versions: Silentum Uploader 1.4.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=2 ---- Due to insufficient validation of client-side data, we can alter the path of files to be...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/01/12 12:0 a.m.23 views

Silentum Uploader 1.4.0 Remote File Deletion Exploit

No description provided by source. Vendor: http://hypersilence.net Versions: Silentum Uploader 1.4.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=2 ---- Due to insufficient validation of client-side data, we...

7.1AI score
Exploits0
Rows per page
Query Builder