Lucene search
K

4 matches found

Nuclei
Nuclei
added yesterday49 views

Microstrategy Web 7 - Cross-Site Scripting

Microstrategy Web 7 does not sufficiently encode user-controlled inputs, resulting in cross-site scripting via the Login.asp Msg parameter. id: CVE-2018-18775 info: name: Microstrategy Web 7 - Cross-Site Scripting author: 0xAkoko severity: medium description: Microstrategy Web 7 does not...

6.1CVSS6.3AI score0.06555EPSS
Exploits5References4
CVE
CVE
added 2018/11/01 5:0 p.m.83 views

CVE-2018-18775

The vulnerability CVE-2018-18775 affects Microstrategy Web 7, where Login.asp Msg parameter input is not sufficiently encoded, causing a Cross-Site Scripting (XSS). The NVD entry notes input encoding weaknesses leading to XSS with a base CVSS v3.0 score of 6.1 (Network, Low user interaction requi...

6.1CVSS5.9AI score0.06555EPSS
Exploits5References2Affected Software1
Packet Storm
Packet Storm
added 2018/10/31 12:0 a.m.72 views

Microstrategy Web 7 Cross Site Scripting / Traversal

!-- Exploit Title: Cross Site Scripting in Microstrategy Web version 7 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: https://www.microstrategy.com Software Link: https://www.microstrategy.com Version: Microstrategy Web version 7 Tested on: Unix CVE : CVE-2018-18775 Category:...

5.3AI score0.19551EPSS
Exploits7
exploitpack
exploitpack
added 2018/10/30 12:0 a.m.72 views

Microstrategy Web 7 - Cross-Site Scripting Directory Traversal

Microstrategy Web 7 - Cross-Site Scripting Directory Traversal !-- Exploit Title: Cross Site Scripting in Microstrategy Web version 7 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: https://www.microstrategy.com Software Link: https://www.microstrategy.com Version: Microstrategy...

4.3CVSS5.2AI score0.19551EPSS
Exploits7
Rows per page
Query Builder