Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-15667

Malware in sbrugna...

9.4CVSS9.4AI score0.01235EPSS
Exploits1References2
CNVD
CNVD
added 2018/08/02 12:0 a.m.3 views

FocalScope XML External Entity Injection Vulnerability

FocalScope is a cloud-based help desk solution. The product includes email ticketing, survey management, and implementation chat tools. An XML external entity injection vulnerability exists in FocalScope v2416 and prior versions. An attacker could exploit this vulnerability by submitting a...

9.4CVSS9.3AI score0.01235EPSS
Exploits1References1
OSV
OSV
added 2018/08/01 8:29 p.m.1 views

CVE-2018-3881

An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v2416. A unauthenticated attacker could submit a specially crafted web request to FocalScope's server that could cause an XXE, and potentially result in data compromise...

9.4CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2018/08/01 8:29 p.m.14 views

CVE-2018-3881

An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v2416. A unauthenticated attacker could submit a specially crafted web request to FocalScope's server that could cause an XXE, and potentially result in data compromise...

9.4CVSS9.4AI score0.01235EPSS
Exploits1References1
Prion
Prion
added 2018/08/01 8:29 p.m.15 views

Xxe

An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v2416. A unauthenticated attacker could submit a specially crafted web request to FocalScope's server that could cause an XXE, and potentially result in data compromise...

7.5CVSS9.1AI score0.01235EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/08/01 8:0 p.m.12 views

CVE-2018-3881

An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v2416. A unauthenticated attacker could submit a specially crafted web request to FocalScope's server that could cause an XXE, and potentially result in data compromise...

9.4CVSS9.4AI score0.01235EPSS
Exploits1References1
CVE
CVE
added 2018/08/01 8:0 p.m.51 views

CVE-2018-3881

CVE-2018-3881 affects FocalScope v2416 and earlier: an unauthenticated XML External Entity (XXE) vulnerability that allows a crafted XML payload to cause data disclosure. TALOS details show the vulnerability is triggered via POST to /emm/cros /xlogin.asp with a crafted XML document, demonstrating...

9.4CVSS9.2AI score0.01235EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2018/07/20 12:0 a.m.70 views

FocalScope XML External Entity Injection Vulnerability

Summary An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v2416. A unauthenticated attacker could submit a specially crafted web request to FocalScope’s server that could cause an XXE, and potentially result in data compromise. Tested Versions...

9.4CVSS9.6AI score0.01235EPSS
Exploits1
Openbugbounty
Openbugbounty
added 2016/07/08 1:31 a.m.6 views

focalscope.com XSS vulnerability

Vulnerable URL: http://www.focalscope.com/kb/askQuestion/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1005588 VIP website status:| No Check focalscope.com SSL connection:| Grade...

6.3AI score
Exploits0
Rows per page
Query Builder