4 matches found
CVE-2018-5550
Versions of Epson AirPrint released prior to January 19, 2018 contain a reflective cross-site scripting XSS vulnerability, which can allow untrusted users on the network to hijack a session cookie or perform other reflected XSS attacks on a currently logged-on user...
Anti-Malware Security & Brute-Force Firewall <= 4.15.42 - XSS & CSRF
The Anti-Malware Security and Brute-Force Firewall WordPress plugin was affected by a XSS & CSRF security vulnerability. XSS vulnerability in https://wordpress.org/plugins/gotmls/ has been identified. While I scan a site with that plugin , i had a file '".png and it was skippped , but result was...
Linkedin Social Network - Persistent Web Vulnerability
Document Title: =============== Linkedin Social Network - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=962 Linkedin Security Ticket ID: 130429-005211 Release Date: ============= 2013-06-07 Vulnerability Laboratory ID VL-ID...
CVE-2006-3665
SquirrelMail 1.4.6 and earlier, with registerglobals enabled, allows remote attackers to hijack cookies in src/redirect.php via unknown vectors. NOTE: while "cookie theft" is frequently associated with XSS, the vendor disclosure is too vague to be certain of this...