Lucene search
+L

4 matches found

Packet Storm
Packet Storm
added 2023/05/24 12:0 a.m.336 views

eScan Management Console 14.0.1400.2281 Cross Site Scripting

Exploit Title: eScan Management Console 14.0.1400.2281 - Cross Site Scripting Date: 2023-05-16 Exploit Author: Sahil Ojha Vendor Homepage: https://www.escanav.com Software Link: https://cl.escanav.com/ewconsole.dll Version: 14.0.1400.2281 Tested on: Windows CVE : CVE-2023-31703 Step of...

7.1AI score0.04475EPSS
Exploits4
0day.today
0day.today
added 2023/05/23 12:0 a.m.251 views

eScan Management Console 14.0.1400.2281 - Cross Site Scripting Vulnerability

Exploit Title: eScan Management Console 14.0.1400.2281 - Cross Site Scripting Exploit Author: Sahil Ojha Vendor Homepage: https://www.escanav.com Software Link: https://cl.escanav.com/ewconsole.dll Version: 14.0.1400.2281 Tested on: Windows CVE : CVE-2023-31703 Step of Reproduction/ Proof of...

6CVSS9.3AI score0.04475EPSS
Exploits4
Exploit DB
Exploit DB
added 2023/05/23 12:0 a.m.244 views

eScan Management Console 14.0.1400.2281 - Cross Site Scripting

Exploit Title: eScan Management Console 14.0.1400.2281 - Cross Site Scripting Date: 2023-05-16 Exploit Author: Sahil Ojha Vendor Homepage: https://www.escanav.com Software Link: https://cl.escanav.com/ewconsole.dll Version: 14.0.1400.2281 Tested on: Windows CVE : CVE-2023-31703 Step of...

9CVSS9.3AI score0.04475EPSS
Exploits4
CVE
CVE
added 2023/05/17 12:0 a.m.43 views

CVE-2023-31703

CVE-2023-31703 affects Microworld eScan Management Console (v14.0.1400.2281). A Cross-Site Scripting flaw in the editUserName form via the from parameter enables remote injection of arbitrary code. Documented risk includes potential session-cookie theft leading to account takeover (as shown in Po...

9CVSS8.5AI score0.04475EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder