Lucene search
K

103 matches found

OSV
OSV
added 2023/05/24 8:15 p.m.8 views

CVE-2023-25598

A vulnerability in the conferencing component of Mitel MiVoice Connect through 19.3 SP2 and 20.x, 21.x, and 22.x through 22.24.1500.0 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient validation for the home.php page. A successful...

6.1CVSS5.8AI score0.0041EPSS
Exploits0References2
NVD
NVD
added 2023/05/24 8:15 p.m.11 views

CVE-2023-25598

A vulnerability in the conferencing component of Mitel MiVoice Connect through 19.3 SP2 and 20.x, 21.x, and 22.x through 22.24.1500.0 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient validation for the home.php page. A successful...

6.1CVSS6.2AI score0.0041EPSS
Exploits0References2
Prion
Prion
added 2023/05/24 8:15 p.m.21 views

Cross site scripting

A vulnerability in the conferencing component of Mitel MiVoice Connect through 19.3 SP2 and 20.x, 21.x, and 22.x through 22.24.1500.0 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient validation for the home.php page. A successful...

5.8CVSS6.1AI score0.0041EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/03/09 9:15 p.m.15 views

Sql injection

Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /billing/home.php...

7.5CVSS9.7AI score0.00788EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/05/07 5:15 p.m.17 views

Cross site scripting

A reflected cross-site scripting XSS vulnerability in the Mitel ShoreTel Conference Web Application 19.50.1000.0 before MiVoice Connect 18.7 SP2 allows remote attackers to inject arbitrary JavaScript and HTML via the PATHINFO to home.php...

4.3CVSS5.9AI score0.00773EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2018/10/29 12:29 p.m.30 views

CVE-2016-10732

ProjectSend formerly cFTP r582 allows authentication bypass via a direct request for users.php, home.php, edit-file.php?fileid=1, or process-zip-download.php, or adduserform parameters to users-add.php...

9.8CVSS9.6AI score0.01855EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2018/08/06 8:18 p.m.16 views

slavino.be XSS vulnerability

Open Bug Bounty ID: OBB-659757 Description| Value ---|--- Affected Website:| slavino.be Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
NVD
NVD
added 2018/03/06 4:29 p.m.20 views

CVE-2017-9786

Cross-site scripting XSS vulnerability in ProjectSend formerly cFTP before commit 6c3710430be26feb5371cb0377e5355d6f9a27ca allows remote attackers to inject arbitrary web script or HTML via the Description field in My account Name updated, related to home.php and actions-log.php...

6.1CVSS6.1AI score0.01079EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/03/06 4:0 p.m.21 views

CVE-2017-9786

Cross-site scripting XSS vulnerability in ProjectSend formerly cFTP before commit 6c3710430be26feb5371cb0377e5355d6f9a27ca allows remote attackers to inject arbitrary web script or HTML via the Description field in My account Name updated, related to home.php and actions-log.php...

6.1AI score0.01079EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2018/01/12 1:8 p.m.11 views

performanceradiator.com XSS vulnerability

Open Bug Bounty ID: OBB-515307 Description| Value ---|--- Affected Website:| performanceradiator.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:...

6.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/28 10:33 a.m.94 views

tilda.ch XSS vulnerability

Open Bug Bounty ID: OBB-282865 Description| Value ---|--- Affected Website:| tilda.ch Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/27 9:11 p.m.12 views

twghlffkg.edu.hk XSS vulnerability

Open Bug Bounty ID: OBB-282717 Description| Value ---|--- Affected Website:| twghlffkg.edu.hk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/26 5:28 a.m.10 views

stmkg.edu.hk XSS vulnerability

Vulnerable URL: http://www.stmkg.edu.hk/home.php?id=1...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/26 5:26 a.m.7 views

hrvatski-plivacki-savez.hr XSS vulnerability

Vulnerable URL: http://www.hrvatski-plivacki-savez.hr/Sadrzaj/Home.php?id=Hom"';-- 〈=Eng Details: Description| Value ---|--- Patched:| No Latest check for patch:| 24.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2380620 VIP website status:| No Check...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/07/14 11:33 a.m.10 views

aex.ablenetinc.com XSS vulnerability

Vulnerable URL: http://aex.ablenetinc.com/home.php Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check aex.ablenetinc.com SSL...

6.3AI score
Exploits0
CNVD
CNVD
added 2017/03/09 12:0 a.m.5 views

Cookie injection vulnerability in mallbuilder frontend v7.3.4 home.php file

MallBuilder is a multi-user online shopping mall solution system based on PHP+MYSQL. mallbuilder v7.3.4 has a SQL injection vulnerability in the foreground home.php, which allows attackers to obtain sensitive database information using common SQL injection tools...

7.7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/10/06 10:13 a.m.7 views

cogindo.co.id XSS vulnerability

Vulnerable URL: http://cogindo.co.id/v3/home.php?lang=prompt'OPENBUGBOUNTY'...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/08/14 3:3 p.m.14 views

apexgulf.ae XSS vulnerability

Vulnerable URL: http://www.apexgulf.ae/home.php?lang=fr"...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/06/22 12:49 p.m.14 views

doitung.org XSS vulnerability

Vulnerable URL: http://www.doitung.org/home.php?gg=1%22--%3E%3Csvg/onload=;prompt/OPENBUGBOUNTY/;%3Eht Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3375914 VIP website status:| N...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Qualiteam X-Cart 4.0.8 home.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These vulnerabilities could permit remot...

7.1AI score
Exploits0
Rows per page
Query Builder