Lucene search
K

4 matches found

CVE
CVE
added 2013/10/28 10:0 p.m.50 views

CVE-2013-5744

CVE-2013-5744 affects Feng Office (2.3.2-rc and earlier). The issue is a Cross-Site Scripting (XSS) in the ref_[any] parameter passed to /index.php (e.g., ref_abc), caused by insufficient sanitisation of user-supplied data. Exploitation can lead to arbitrary HTML/JavaScript execution in the victi...

4.3CVSS5.7AI score0.0096EPSS
Exploits3References2Affected Software1
securityvulns
securityvulns
added 2013/10/13 12:0 a.m.71 views

Cross-Site Scripting (XSS) in Feng Office

Advisory ID: HTB23174 Product: Feng Office Vendor: Secure Data SRL Vulnerable Versions: 2.3.2-rc and probably prior Tested Version: 2.3.2-rc Advisory Publication: September 18, 2013 without technical details Vendor Notification: September 18, 2013 Public Disclosure: October 9, 2013 Vulnerability...

4.3CVSS6.2AI score0.0096EPSS
Exploits3
0day.today
0day.today
added 2013/10/10 12:0 a.m.52 views

Feng Office 2.3.2-rc Cross Site Scripting Vulnerability

Feng Office version 2.3.2-rc suffers from a cross site scripting vulnerability. Advisory ID: HTB23174 Product: Feng Office Vendor: Secure Data SRL Vulnerable Versions: 2.3.2-rc and probably prior Tested Version: 2.3.2-rc Advisory Publication: September 18, 2013 without technical details Vendor...

4.3CVSS6.2AI score0.0096EPSS
Exploits3
Packet Storm
Packet Storm
added 2013/10/09 12:0 a.m.59 views

Feng Office 2.3.2-rc Cross Site Scripting

Advisory ID: HTB23174 Product: Feng Office Vendor: Secure Data SRL Vulnerable Versions: 2.3.2-rc and probably prior Tested Version: 2.3.2-rc Advisory Publication: September 18, 2013 without technical details Vendor Notification: September 18, 2013 Public Disclosure: October 9, 2013 Vulnerability...

4.3CVSS6.6AI score0.0096EPSS
Exploits3
Rows per page
Query Builder