📄 HighPortal 12.x SQL Injection

HighPortal version 12.x remote SQL injection proof of concept exploit. ============================================================================================================================================= | Title : HighPortal v12.x SQL Injection Exploit | | Author : indoushka | | Tested o...

EUVD-2018-9704

Malware in sbrugna...

HighCMS / HighPortal 12.x SQL Injection Vulnerability

Exploit Title: HighCMS/HighPortal v12.x SQL Inj Type : WEBAPPS "HighCMS/HighPortal" Platform : ASP.NET Exploit Author : E1.Coders Software Link : https://aryanic.com/page/portal Version : v12.x Category : Webapps Tested on: Linux/Windows Google Dork:...

Aryanic HighPortal Cross-Site Scripting Vulnerability

Aryanic HighPortal is an enterprise portal system based on Java and ASP.NET. A cross-site scripting vulnerability exists in Aryanic HighPortal version 12.5. A remote attacker can exploit this vulnerability by adding tags to inject arbitrary web script or HTML...

CVE-2018-17964

Aryanic HighPortal 12.5 has XSS via an Add Tags action...

CVE-2018-17964

Aryanic HighPortal 12.5 has XSS via an Add Tags action...

Deserialization of untrusted data

Aryanic HighPortal 12.5 has XSS via an Add Tags action...

CVE-2018-17964

CVE-2018-17964 affects Aryanic HighPortal 12.5. The vulnerability is a Cross‑Site Scripting (XSS) flaw that can be triggered via the Add Tags action, enabling injection of arbitrary script/HTML. Public sources in CNVD/NVD describe HighPortal 12.5 as vulnerable to XSS, with the remote attacker abl...

CVE-2018-17964

Aryanic HighPortal 12.5 has XSS via an Add Tags action...

HighPortal 12.5 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Vulnerable Product: HighPortal Affected version: 12.5 Vulnerability Type: XSS CVE: CVE-2018-17964 CWE: CWE-79 Credit: Ali Abdollahi Remote: Yes Description:XSS vulnerability on Aryanic HighPortal version 12.5 via an Add Tags action.Contact:...

HighPortal 12.5 Cross Site Scripting

Vulnerable Product: HighPortal Affected version: 12.5 Vulnerability Type: XSS CVE: CVE-2018-17964 CWE: CWE-79 Credit: Ali Abdollahi Remote: Yes Description:XSS vulnerability on Aryanic HighPortal version 12.5 via an Add Tags action.Contact: https://twitter.com/aliabdollahi2 References: -...

Aryanic HighCMS and HighPortal multiple Vulnerabilities

================= IUT-CERT ================= Title: Aryanic HighPortal, HighCMS Multiple Vulnerabilities Vendor: www.aryanic.com Vulnerable Version: 10 and priors Type: Input.Validation.Vulnerability URI Injection, Frame Injection, XSS Fix: N/A ================== nsec.ir =================...