Lucene search
K

138 matches found

exploitpack
exploitpack
added 2018/11/15 12:0 a.m.15 views

Kordil EDMS 2.2.60rc3 - Arbitrary File Upload

Kordil EDMS 2.2.60rc3 - Arbitrary File Upload Exploit Title: Kordil EDMS 2.2.60rc3 - Arbitrary File Upload Dork: N/A Date: 2018-11-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.kordil.net/ Software Link:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2018/11/15 12:0 a.m.33 views

Kordil EDMS 2.2.60rc3 - Arbitrary File Upload

Exploit Title: Kordil EDMS 2.2.60rc3 - Arbitrary File Upload Dork: N/A Date: 2018-11-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.kordil.net/ Software Link: https://vorboss.dl.sourceforge.net/project/kordiledms/Kordil%20EDMS%20v2.2.60rc3/kordiledmsinstaller.exe Version: 2.2.60rc3...

7.4AI score
Exploits0
OSV
OSV
added 2018/09/06 3:25 a.m.21 views

GHSA-5H6M-9MVX-M6C5 Moderate severity vulnerability that affects mayan-edms

An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled...

6.1CVSS5.9AI score0.01209EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2018/09/06 3:25 a.m.30 views

Moderate severity vulnerability that affects mayan-edms

An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled...

6.1CVSS1.9AI score0.01209EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2018/09/06 3:24 a.m.17 views

GHSA-5R76-CJF4-C9QX Moderate severity vulnerability that affects mayan-edms

An issue was discovered in Mayan EDMS before 3.0.2. The Cabinets app has XSS via a crafted cabinet label...

6.1CVSS5.8AI score0.01327EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2018/09/06 3:24 a.m.33 views

Moderate severity vulnerability that affects mayan-edms

An issue was discovered in Mayan EDMS before 3.0.2. The Cabinets app has XSS via a crafted cabinet label...

6.1CVSS3.1AI score0.01327EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2018/09/06 3:24 a.m.24 views

GHSA-FPCV-J2Q9-VQHW mayan-edms Cross-site Scripting vulnerability

An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS...

6.1CVSS6.1AI score0.01327EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2018/09/06 3:24 a.m.29 views

mayan-edms Cross-site Scripting vulnerability

An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS...

6.1CVSS6.1AI score0.01327EPSS
Exploits1References7Affected Software2
Veracode
Veracode
added 2018/09/04 5:37 a.m.12 views

Cross-site Scripting (XSS)

mayan-edms is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization of node.label in the jstreedata function of mayan/apps/cabinets/widgets.py, causing XSS attacks...

6.1CVSS5.5AI score0.01327EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2018/09/04 2:59 a.m.18 views

Cross-site Scripting (XSS)

mayan-edms is vulnerable to cross-site scripting XSS attacks. The library does not properly escape tag labels, allowing a malicious user to inject and execute arbitrary Javascript...

6.1CVSS6AI score0.01209EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2018/09/04 2:48 a.m.14 views

Cross-Site Scripting (XSS)

mayan-edms is vulnerable to cross-site scripting XSS attacks. The window.location.hash value is passed directly to window.location which allows an attacker to execute arbitrary JavaScript code on a victim's browser...

6.1CVSS5.9AI score0.01327EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2018/09/04 12:0 a.m.4 views

Mayan EDMS Cross-Site Scripting Vulnerability (CNVD-2019-09817)

Mayan EDMS is a document management system developed by software developer Roberto Rosario. The system supports electronic signatures, version control and optical character recognition. A cross-site scripting vulnerability exists in Mayan EDMS versions prior to 3.0.2. The vulnerability stems from...

6.1CVSS5.9AI score0.01327EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/04 12:0 a.m.2 views

Mayan EDMS Cross-Site Scripting Vulnerability

Mayan EDMS is a document management system developed by software developer Roberto Rosario. The system supports electronic signatures, version control, optical character recognition, etc. Tags app is one of the tag management applications. A cross-site scripting vulnerability exists in the Tags a...

6.1CVSS5.9AI score0.01209EPSS
Exploits1References1
PyPA
PyPA
added 2018/09/03 7:29 p.m.8 views

PYSEC-2018-106

An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS...

6.1CVSS7AI score0.01327EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2018/09/03 7:29 p.m.19 views

CVE-2018-16405

An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS...

6.1CVSS6.2AI score0.01327EPSS
Exploits1References3
NVD
NVD
added 2018/09/03 7:29 p.m.21 views

CVE-2018-16407

An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled...

6.1CVSS6AI score0.01209EPSS
Exploits1References3
Prion
Prion
added 2018/09/03 7:29 p.m.15 views

Design/Logic Flaw

An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled...

4.3CVSS5.9AI score0.01209EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2018/09/03 7:29 p.m.8 views

PYSEC-2018-14

An issue was discovered in Mayan EDMS before 3.0.2. The Cabinets app has XSS via a crafted cabinet label...

6.1CVSS6.1AI score0.01327EPSS
Exploits1References4Affected Software1
PyPA
PyPA
added 2018/09/03 7:29 p.m.8 views

PYSEC-2018-15

An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled...

6.1CVSS6.3AI score0.01209EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2018/09/03 7:29 p.m.16 views

Cross site scripting

An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS...

4.3CVSS6.1AI score0.01327EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder