PHP Scripts Mall Myperfectresume/JobHero/Resume Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Myperfectresume/JobHero/Resume Clone Script is a set of online resume generating website scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Myperfectresume/JobHero/Resume Clone Script version 2.0.6, which can be exploited by remote...

cgit 1.2.1 - Directory Traversal (Metasploit)

cgit 1.2.1 - Directory Traversal Metasploit Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ Date: 2018-08-14 CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory...

cgit 1.2.1 - Directory Traversal (Metasploit)

Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ Date: 2018-08-14 CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory Traversal', 'Description' = %q This module...

Security update for cgit (moderate)

This update for cgit to version 1.2.1 fixes the following issues: The following security vulnerability was addressed: - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made: - Update to upstream...

Security update for cgit (moderate)

This update for cgit fixes the following issues: The following security vulnerability was addressed: - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made: - Update to upstream release 1.2.1...

CVE-2018-15185

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service page update outage via crafted PHP and JavaScript code in the "Current Position" field...

CVE-2018-15185

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service page update outage via crafted PHP and JavaScript code in the "Current Position" field...

CVE-2018-15185

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service page update outage via crafted PHP and JavaScript code in the "Current Position" field...

CVE-2018-15185

Vulnerability summary (CVE-2018-15185) : PHP Scripts Mall Naukri/Shine/Jobsite Clone Script version 3.0.4 is affected. A remote attacker can trigger a denial of service (page update outage) by submitting crafted PHP and JavaScript code in the “Current Position” field. This is documented across mu...

CVE-2018-15183

PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields...

CVE-2018-15183

PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields...

Cross site scripting

PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields...

CVE-2018-15184

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795...

CVE-2018-15183

PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields...

CVE-2018-15184

CVE-2018-15184 affects PHP Scripts Mall Naukri/Shine/Jobsite Clone Script, version 3.0.4. The vulnerability is a stored cross-site scripting (XSS) issue in the USERNAME field, as described in multiple sources (notably the CVE entry and CNVD/NVD records). The root cause is input handling that allo...

CVE-2018-15183

CVE-2018-15183 affects PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6. A stored XSS vulnerability exists in the Full Name and Title fields, enabling remote/script injection if user input is rendered without proper sanitization. Public documents corroborate a Cross-Site Scr...

cgit cgit_clone_objects() Directory Traversal

cgit: directory traversal in cgitcloneobjects CVE-2018-14912 There is a directory traversal vulnerability in cgitcloneobjects, reachable when the configuration flag enable-http-clone is set to 1 default: void cgitcloneobjectsvoid if !ctx.qry.path cgitprinterrorpage400, "Bad request", "Bad request...

cgit < 1.2.1 - cgit_clone_objects() Directory Traversal Vulnerability

Exploit for cgi platform in category web applications There is a directory traversal vulnerability in cgitcloneobjects, reachable when the configuration flag enable-http-clone is set to 1 default: void cgitcloneobjectsvoid if !ctx.qry.path cgitprinterrorpage400, "Bad request", "Bad request";...

ALPINE-CVE-2018-14912

cgitcloneobjects in CGit before 1.2.1 has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request...

UBUNTU-CVE-2018-14912

cgitcloneobjects in CGit before 1.2.1 has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request...