Lucene search
K

6 matches found

Circl
Circl
added 2018/08/06 2:41 p.m.5 views

CVE-2018-14840

creationtimestamp| type| source ---|---|--- 2018-08-06 14:41:21+00:00| seen| https://t.me/VulnerabilityNews/499...

6.1CVSS5.9AI score0.03666EPSS
Exploits6References1
Packet Storm
Packet Storm
added 2018/08/06 12:0 a.m.35 views

Subrion CMS 4.2.1 Cross Site Scripting

Exploit Title: Subrion CMS- 4.2.1 XSS Using component with known Vulnerability Date: 02-08-2018 Exploit Author: Zeel Chavda Vendor Homepage: https://subrion.org/ Software Link: https://subrion.org/download/ Version: 4.2.1 REQUIRED Tested on: Windows,FireFox CVE : CVE-2018-14840 Steps: - 1. Create...

6.3AI score0.03666EPSS
Exploits6
0day.today
0day.today
added 2018/08/06 12:0 a.m.70 views

Subrion CMS 4.2.1 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Subrion CMS- 4.2.1 XSS Using component with known Vulnerability Exploit Author: Zeel Chavda Vendor Homepage: https://subrion.org/ Software Link: https://subrion.org/download/ Version: 4.2.1 REQUIRED Tested on: Windows,FireFox CV...

6.3AI score0.03666EPSS
Exploits6
exploitpack
exploitpack
added 2018/08/06 12:0 a.m.30 views

Subrion CMS 4.2.1 - Cross-Site Scripting

Subrion CMS 4.2.1 - Cross-Site Scripting Exploit Title: Subrion CMS- 4.2.1 XSS Using component with known Vulnerability Date: 02-08-2018 Exploit Author: Zeel Chavda Vendor Homepage: https://subrion.org/ Software Link: https://subrion.org/download/ Version: 4.2.1 REQUIRED Tested on: Windows,FireFo...

4.3CVSS6.1AI score0.03666EPSS
Exploits6
CVE
CVE
added 2018/08/02 1:0 a.m.98 views

CVE-2018-14840

Subrion CMS 4.2.1 contains a Cross‑Site Scripting (XSS) vulnerability in uploads/.htaccess, where the app does not block .html uploads (while blocking .htm). An attacker can upload a .html file via CKEditor/manager and trigger XSS. Public exploit entries and a related commit reference support thi...

6.1CVSS5.8AI score0.03666EPSS
Exploits6References3Affected Software1
Cvelist
Cvelist
added 2018/08/02 1:0 a.m.23 views

CVE-2018-14840

uploads/.htaccess in Subrion CMS 4.2.1 allows XSS because it does not block .html file uploads but does block, for example, .htm file uploads...

6AI score0.03666EPSS
Exploits6References3
Rows per page
Query Builder