Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2018/04/10 12:0 a.m.49 views

iScripts Easycreate 3.2.1 Cross Site Scripting

Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9236 CVE:...

0.2AI score0.01882EPSS
Exploits5
exploitpack
exploitpack
added 2018/04/10 12:0 a.m.25 views

iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting

iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on:...

3.5CVSS0.2AI score0.01882EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/04/10 12:0 a.m.32 views

iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting

Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9236 CVE:...

5.4CVSS5.5AI score0.01882EPSS
Exploits5
CVE
CVE
added 2018/04/04 7:0 a.m.61 views

CVE-2018-9236

CVE-2018-9236 is a stored XSS vulnerability in iScripts EasyCreate 3.2.1 affecting the Site title (and Site Description per PoC) fields. Exploitation requires data input stored server-side and later rendered, enabling script execution in victims’ browsers. The CVSS metrics from NVD show a base sc...

5.4CVSS5.3AI score0.01882EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder