7 matches found
CVE-2018-1000181
Kitura 2.3.0 and earlier have an unintended read access to unauthorised files and folders that can be exploited by a crafted URL resulting in information disclosure...
libraries.udmercy.edu XSS vulnerability
Open Bug Bounty ID: OBB-466377 Description| Value ---|--- Affected Website:| libraries.udmercy.edu Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
kisi.deu.edu.tr XSS vulnerability
Vulnerable URL: http://kisi.deu.edu.tr/celal.albayrak/foto/flashdetection.swf?flashContentURL=javascript:alertdocument.domain Details: Description| Value ---|--- Patched:| No Latest check for patch:| 09.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown...
onthesnow.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-152862 Description| Value ---|--- Affected Website:| onthesnow.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
lesliesidahoproperties.com XSS vulnerability
Open Bug Bounty ID: OBB-66074 Description| Value ---|--- Affected Website:| lesliesidahoproperties.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventi...
posterazor.sourceforge.net XSS vulnerability
Open Bug Bounty ID: OBB-57262 Description| Value ---|--- Affected Website:| posterazor.sourceforge.net Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventi...
MemHT Portal 4.0 - Remote Code Execution
MemHT Portal 4.0 - Remote Code Execution !/usr/bin/perl =about MemHT Portal = 4.0 Perl exploit AUTHOR: Discovered and written by Ams ax330d doggy gmail dot com DESCRIPTION: Here we are able to make SQL-injection due to weak filtering. So, look at inc/incheader.php lines 74, where hides code...