Lucene search
+L

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-5831

Malware in sbrugna...

6.1CVSS6.3AI score0.01307EPSS
Exploits0References7
OSV
OSV
added 2017/04/20 5:59 p.m.13 views

CVE-2016-4849

Multiple cross-site scripting XSS vulnerabilities in Geeklog IVYWE edition 2.1.1 allow remote attackers to inject arbitrary web script or HTML by leveraging use of the COMgetCurrentURL function in 1 publichtml/layout/default/header.thtml, 2 publichtml/layout/bento/header.thtml, 3...

6.1CVSS5.9AI score0.01307EPSS
Exploits0References6
Prion
Prion
added 2017/04/20 5:59 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Geeklog IVYWE edition 2.1.1 allow remote attackers to inject arbitrary web script or HTML by leveraging use of the COMgetCurrentURL function in 1 publichtml/layout/default/header.thtml, 2 publichtml/layout/bento/header.thtml, 3...

4.3CVSS6.1AI score0.01307EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2017/04/20 5:59 p.m.13 views

CVE-2016-4849

Multiple cross-site scripting XSS vulnerabilities in Geeklog IVYWE edition 2.1.1 allow remote attackers to inject arbitrary web script or HTML by leveraging use of the COMgetCurrentURL function in 1 publichtml/layout/default/header.thtml, 2 publichtml/layout/bento/header.thtml, 3...

6.1CVSS6.1AI score0.01307EPSS
Exploits0References6
Cvelist
Cvelist
added 2017/04/20 5:0 p.m.18 views

CVE-2016-4849

Multiple cross-site scripting XSS vulnerabilities in Geeklog IVYWE edition 2.1.1 allow remote attackers to inject arbitrary web script or HTML by leveraging use of the COMgetCurrentURL function in 1 publichtml/layout/default/header.thtml, 2 publichtml/layout/bento/header.thtml, 3...

6.1AI score0.01307EPSS
Exploits0References6
CVE
CVE
added 2017/04/20 5:0 p.m.49 views

CVE-2016-4849

CVE-2016-4849 concerns Geeklog IVYWE edition 2.1.1. The vulnerability is a set of cross-site scripting flaws that can be triggered via the COM_getCurrentURL function used in four layout template files (public_html/layout/default/header.thtml, layout/bento/header.thtml, layout/fotos/header.thtml, ...

6.1CVSS6AI score0.01307EPSS
Exploits0References6Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/09/23 5:15 a.m.4 views

Multiple plugins for Geeklog IVYWE edition vulnerable to cross-site scripting

Overview Geeklog is an open source content management system CMS. The Geeklog IVYWE edition plugins Assist, dataBox, and userBox each contain a cross-site scripting CWE-79 vulnerability. IVY WE CO.,LTD. reported this vulnerability to IPA and JPCERT/CC to notify users of its solution through JVN...

6.1CVSS6AI score0.0168EPSS
Exploits0References7
CNVD
CNVD
added 2016/08/21 12:0 a.m.6 views

Multiple Cross-Site Scripting Vulnerabilities in Geeklog IVYWE

geeklog is an open source content management system CMS. Multiple cross-site scripting vulnerabilities exist in Geeklog IVYWE. Because the program fails to properly perform user-supplied input, an attacker could exploit the vulnerabilities to execute arbitrary script code in a trusted user's...

6.1CVSS6.9AI score0.01307EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/08/19 5:13 a.m.7 views

Geeklog IVYWE edition contains a cross-site scripting vulnerability

Overview Geeklog is an open source content management system CMS. Geeklog IVYWE edition contains a cross-site scripting CWE-79 vulnerability. Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information...

6.1CVSS6AI score0.01307EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/08/19 12:0 a.m.28 views

JVN#09836883: Geeklog IVYWE edition contains a cross-site scripting vulnerability

Geeklog is an open source content management system CMS. Geeklog IVYWE edition contains a cross-site scripting CWE-79 vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Apply the Patch Apply the appropriate patch according to the information provided by...

6.1CVSS6AI score0.01307EPSS
Exploits0
Rows per page
Query Builder