CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

seebug.org•added 2014/07/01 12:0 a.m.•8 views

eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability

No description provided by source. ? Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link:...

7.1AI score

Exploits0

Prion•added 2014/06/11 2:55 p.m.•16 views

Cross site scripting

Cross-site scripting XSS vulnerability in libraries/includes/personal/profile.php in Epignosis eFront 3.6.14.4 allows remote attackers to inject arbitrary web script or HTML via the surname parameter to student.php...

4.3CVSS6.2AI score0.02159EPSS

Exploits1References4Affected Software1

CVE•added 2014/06/11 2:0 p.m.•36 views

CVE-2014-4033

CVE-2014-4033 is an XSS vulnerability in Epignosis eFront 3.6.14.4, identified in libraries/includes/personal/profile.php. It can be triggered via the surname parameter to student.php to inject arbitrary web script/HTML. Red Hat and NVD entries reproduce the same description. Exploitation details...

4.3CVSS5.9AI score0.02159EPSS

Exploits1References4Affected Software1

Exploit DB•added 2014/06/09 12:0 a.m.•32 views

eFront 3.6.14.4 - 'surname' Persistent Cross-Site Scripting

Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link: https://sourceforge.net/projects/efrontlearning/files/latest/download Version: 3.6.14.4 Tested on:...

7AI score

Exploits0

Packet Storm•added 2014/06/09 12:0 a.m.•20 views

eFront 3.6.14.4 Cross Site Scripting

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by