Lucene search
+L

89 matches found

Cvelist
Cvelist
added 2020/12/15 3:38 p.m.18 views

CVE-2020-35395

XSS in the Add Expense Component of EGavilan Media Expense Management System 1.0 allows an attacker to permanently store malicious JavaScript code via the 'description' field...

6.1AI score0.00846EPSS
Exploits1References2
CVE
CVE
added 2020/12/15 3:38 p.m.43 views

CVE-2020-35395

CVE-2020-35395 describes a stored XSS vulnerability in the EGavilan Media Expense Management System 1.0, affecting the Add Expense Component. The underlying issue is that the attacker-supplied string in the description field can inject JavaScript, leading to persistent client-side code execution....

6.1CVSS6AI score0.00846EPSS
Exploits1References2Affected Software1
Exploit DB
Exploit DB
added 2020/12/02 12:0 a.m.544 views

Expense Management System - 'description' Stored Cross Site Scripting

Exploit Title: Expense Management System - 'description' Stored Cross Site Scripting Date: 02/12/2020 Exploit Author: Nikhil Kumar Vendor Homepage: http://egavilanmedia.com/ Software Link: http://egavilanmedia.com/expense-management-system/ Tested On: Ubuntu Vunerable Parameter: "description="...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/10/18 12:0 a.m.43 views

Time And Expense Management System 3.0 SQL Injection

Exploit Title: Time and Expense Management System 3.0 - 'table' SQL Injection Dork: N/A Date: 2018-10-17 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.initechs.com/ Software Link: http://sourceforge.net/projects/tems/files/latest Version: 3.0 Category: Webapps Tested on:...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2018/10/17 12:0 a.m.19 views

Time and Expense Management System 3.0 - table SQL Injection

Time and Expense Management System 3.0 - table SQL Injection Exploit Title: Time and Expense Management System 3.0 - 'table' SQL Injection Dork: N/A Date: 2018-10-17 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.initechs.com/ Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/10/17 12:0 a.m.42 views

Time And Expense Management System 3.0 Cross Site Request Forgery

Exploit Title: Time and Expense Management System 3.0 - Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-10-17 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.initechs.com/ Software Link: http://sourceforge.net/projects/tems/files/latest Version: 3.0 Category: Webapps Tested on:...

Exploits0
Packet Storm
Packet Storm
added 2011/05/03 12:0 a.m.23 views

Time And Expense Management System Cross Site Scripting

------------------------------------------------------------------------ Software................Time and Expense Management System Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://sourceforge.net/projects/tems/ Discovery...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/05/03 12:0 a.m.16 views

Time and Expense Management System - Multiple Vulnerabilities

Time and Expense Management System - Multiple Vulnerabilities ------------------------------------------------------------------------ Software................Time and Expense Management System Vulnerability...........Command Injection Threat Level............Very Critical 5/5...

Exploits0
Exploit DB
Exploit DB
added 2011/05/03 12:0 a.m.23 views

Time and Expense Management System - Multiple Vulnerabilities

------------------------------------------------------------------------ Software................Time and Expense Management System Vulnerability...........Command Injection Threat Level............Very Critical 5/5 Download................http://sourceforge.net/projects/tems/ Discovery...

7.4AI score
Exploits0
Rows per page
Query Builder