4 matches found
EUVD-2018-6398
Malware in sbrugna...
Design/Logic Flaw
Osclass 3.7.4 has XSS via the query string to index.php, a different vulnerability than CVE-2014-6280...
CVE-2014-6280
CVE-2014-6280 affects OsClass prior to 3.4.2, with multiple XSS vulnerabilities that can be triggered via oc-admin/index.php by manipulating parameters (action, nsextt) and within items_reported action when using nsextt. The vulnerability arises in OsClass before 3.4.2, allowing remote attackers ...
Osclass Security Advisory - Multiple XSS Vulnerabilities - CVE-2014-6280
Information ------------ Advisory by Netsparker. Name: XSS Vulnerability in OsClass Affected Software : OsClass Affected Versions: 3.4.1 and possibly below Vendor Homepage : http://osclass.org/ Vulnerability Type : Cross-site Scripting Severity : Critical CVE-ID: CVE-2014-6280 Netsparker Advisory...