Lucene search
K

6 matches found

CVE
CVE
added 2013/07/29 9:0 p.m.62 views

CVE-2013-3515

CVE-2013-3515 affects OpenX OpenX Source 2.8.10 and earlier with two XSS vectors: (1) package parameter in /www/admin/plugin-index.php and (2) group parameter in /www/admin/plugin-settings.php. The root cause is insufficient filtration of user-supplied data, allowing remote attackers to execute a...

4.3CVSS5.7AI score0.04226EPSS
Exploits5References9Affected Software1
securityvulns
securityvulns
added 2013/07/15 12:0 a.m.60 views

Multiple Vulnerabilities in OpenX

Advisory ID: HTB23155 Product: OpenX Vendor: OpenX Vulnerable Versions: 2.8.10 and probably prior Tested Version: 2.8.10 Vendor Notification: May 8, 2013 Vendor Patch: June 28, 2013 Public Disclosure: July 3, 2013 Vulnerability Type: PHP File Inclusion CWE-98, Cross-Site Scripting CWE-79 CVE...

4.3CVSS6.7AI score0.04226EPSS
Exploits6
exploitpack
exploitpack
added 2013/07/05 12:0 a.m.89 views

OpenX 2.8.10 - Multiple Vulnerabilities

OpenX 2.8.10 - Multiple Vulnerabilities Advisory ID: HTB23155 Product: OpenX Vendor: OpenX Vulnerable Versions: 2.8.10 and probably prior Tested Version: 2.8.10 Vendor Notification: May 8, 2013 Vendor Patch: June 28, 2013 Public Disclosure: July 3, 2013 Vulnerability Type: PHP File Inclusion...

4.3CVSS0.1AI score0.04226EPSS
Exploits6
Exploit DB
Exploit DB
added 2013/07/05 12:0 a.m.76 views

OpenX 2.8.10 - Multiple Vulnerabilities

Advisory ID: HTB23155 Product: OpenX Vendor: OpenX Vulnerable Versions: 2.8.10 and probably prior Tested Version: 2.8.10 Vendor Notification: May 8, 2013 Vendor Patch: June 28, 2013 Public Disclosure: July 3, 2013 Vulnerability Type: PHP File Inclusion CWE-98, Cross-Site Scripting CWE-79 CVE...

4.3CVSS6.4AI score0.04226EPSS
Exploits6
0day.today
0day.today
added 2013/07/03 12:0 a.m.61 views

OpenX 2.8.10 Cross Site Scripting / Local File Inclusion Vulnerabilities

OpenX version 2.8.10 suffers from cross site scripting and local file inclusion vulnerabilities. Vendor: OpenX Vulnerable Versions: 2.8.10 and probably prior Tested Version: 2.8.10 Vendor Notification: May 8, 2013 Vendor Patch: June 28, 2013 Public Disclosure: July 3, 2013 Vulnerability Type: PHP...

4.3CVSS5.9AI score0.04226EPSS
Exploits6
htbridge
htbridge
added 2013/05/08 12:0 a.m.52 views

Multiple Vulnerabilities in OpenX

High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in OpenX, which can be exploited to execute arbitrary PHP code, perform Cross-Site Scripting XSS attacks and compromise vulnerable system. 1 Local File Inclusion in OpenX: CVE-2013-3514 Input passed via "group" HTTP GET...

7.6CVSS0.6AI score0.04226EPSS
Exploits6Affected Software1
Rows per page
Query Builder