CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

NVD•added 2018/09/21 7:29 a.m.•11 views

CVE-2018-17302

Stored XSS exists in views/fields/wysiwyg.js in EspoCRM 5.3.6 via a /Email/view saved draft message...

5.4CVSS5.2AI score0.00191EPSS

Exploits1References2

OSV•added 2018/09/21 7:29 a.m.•13 views

CVE-2018-17301

Reflected XSS exists in client/res/templates/global-search/name-field.tpl in EspoCRM 5.3.6 via /Account in the search panel...

5.4CVSS6AI score0.00191EPSS

Exploits1References2

Prion•added 2018/09/21 7:29 a.m.•11 views

Cross site scripting

Stored XSS exists in views/fields/wysiwyg.js in EspoCRM 5.3.6 via a /Email/view saved draft message...

3.5CVSS5.2AI score0.00191EPSS

Exploits1References2Affected Software1

Prion•added 2018/09/21 7:29 a.m.•7 views

Cross site scripting

Reflected XSS exists in client/res/templates/global-search/name-field.tpl in EspoCRM 5.3.6 via /Account in the search panel...

3.5CVSS5.2AI score0.00191EPSS

Exploits1References2Affected Software1

Cvelist•added 2018/09/21 6:0 a.m.•12 views

CVE-2018-17302

Stored XSS exists in views/fields/wysiwyg.js in EspoCRM 5.3.6 via a /Email/view saved draft message...

5.2AI score0.00191EPSS

Exploits1References2

CVE•added 2018/09/21 6:0 a.m.•48 views

CVE-2018-17302

CVE-2018-17302 corresponds to a stored XSS in EspoCRM 5.3.6. The vulnerability is in views/fields/wysiwyg.js and is exploitable via the URL fragment /#Email/view (saved draft message). The available sources consistently describe a stored XSS condition affecting EspoCRM 5.3.6; no further details o...

5.4CVSS5.1AI score0.00191EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by