Lucene search
+L

6 matches found

Nuclei
Nuclei
added yesterday95 views

Jenzabar 9.2x-9.2.2 - Cross-Site Scripting

Jenzabar 9.2.x through 9.2.2 contains a cross-site scripting vulnerability. It allows /ics?tool=search&query. id: CVE-2021-26723 info: name: Jenzabar 9.2x-9.2.2 - Cross-Site Scripting author: pikpikcu severity: medium description: Jenzabar 9.2.x through 9.2.2 contains a cross-site scripting...

6.1CVSS6.7AI score0.12578EPSS
Exploits3References5
Check Point Advisories
Check Point Advisories
added 2021/03/30 12:0 a.m.109 views

Cross Site Scripting Over HTTP Traffic (CVE-2020-17952; CVE-2021-26475; CVE-2021-26702; CVE-2021-26723; CVE-2021-39496; CVE-2021-39499)

Cross Site Scripting Over HTTP Traffic...

7.5CVSS0.3AI score0.12578EPSS
Exploits8
Exploit DB
Exploit DB
added 2021/02/08 12:0 a.m.310 views

Jenzabar 9.2.2 - 'query' Reflected XSS.

Exploit Title: Jenzabar 9.2.2 - 'query' Reflected XSS. Date: 2021–02–06 Exploit Author: y0ungdst Vendor Homepage: https://jenzabar.com Version: Jenzabar — v9.2.0-v9.2.1-v9.2.2 and maybe other versions Tested on: Windows 10 CVE : CVE-2021–26723 -Description: A Reflected Cross-site scripting XSS...

6.1CVSS7.4AI score0.12578EPSS
Exploits3
Circl
Circl
added 2021/02/06 12:36 p.m.14 views

CVE-2021-26723

creationtimestamp| type| source ---|---|--- 2021-02-06 12:36:13+00:00| seen| https://t.me/cibsecurity/23196 2021-02-06 18:40:44+00:00| published-proof-of-concept| https://t.me/YemenShield/724 2021-05-31 03:53:03+00:00| seen| https://t.me/pwnwikizhchannel/552 2024-11-14 06:08:12+00:00| seen|...

6.1CVSS7.1AI score0.12578EPSS
Exploits3References3
CVE
CVE
added 2021/02/06 5:35 a.m.133 views

CVE-2021-26723

Summary: CVE-2021-26723 affects Jenzabar 9.2.x up to 9.2.2 and is a reflected XSS via the /ics?tool=search&query parameter. The public sources describe an input vector that can inject JavaScript into the victim’s browser, with potential impacts including session hijacking, defacement, or theft of...

6.1CVSS6.5AI score0.12578EPSS
Exploits3References4Affected Software1
Packet Storm
Packet Storm
added 2021/02/06 12:0 a.m.147 views

Jenzabar 9.2.2 Cross Site Scripting

Exploit Title: Jenzabar 9.2.2 - 'query' Reflected XSS. Date: 2021–02–06 Exploit Author: y0ungdst Vendor Homepage: https://jenzabar.com Version: Jenzabar — v9.2.0-v9.2.1-v9.2.2 and maybe other versions Tested on: Windows 10 CVE : CVE-2021–26723 -Description: A Reflected Cross-site scripting XSS...

6.7AI score0.12578EPSS
Exploits3
Rows per page
Query Builder