35 matches found
EUVD-2018-20830
Malware in sbrugna...
EUVD-2018-20831
Malware in sbrugna...
iScripts Easycreate 3.2.1 Cross Site Scripting
Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9236 CVE:...
iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting
iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on:...
iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting
Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9236 CVE:...
Cross site scripting
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...
CVE-2018-9237
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...
CVE-2018-9236
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...
CVE-2018-9237
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...
Cross site scripting
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...
CVE-2018-9236
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...
CVE-2018-9237
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...
CVE-2018-9237
Summary (CVE-2018-9237) : iScripts EasyCreate 3.2.1 contains a stored Cross-Site Scripting (XSS) vulnerability in the Site Description field (and also Site Title per sources). The weakness allows injected HTML/JS to be stored and later executed in the context of the affected application, enabling...
CVE-2018-9236
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...
CVE-2018-9236
CVE-2018-9236 is a stored XSS vulnerability in iScripts EasyCreate 3.2.1 affecting the Site title (and Site Description per PoC) fields. Exploitation requires data input stored server-side and later rendered, enabling script execution in victims’ browsers. The CVSS metrics from NVD show a base sc...
iScripts EasyCreate Cross-Site Scripting Vulnerability
IScripts EasyCreate is a set of online website builder from Iscripts, Inc. The tool can be used on the server for the client to provide website building services , belong to the fully customizable . A cross-site scripting vulnerability exists in the Site Description field in IScripts EasyCreate...
iScripts EasyCreate cross-site scripting vulnerability (CNVD-2018-08315)
IScripts EasyCreate is a set of online website builder from Iscripts, Inc. The tool can be used on the server for the client to provide website building services , belong to the fully customizable . A cross-site scripting vulnerability exists in the Site title field in IScripts EasyCreate version...
iScripts EasyCreate 3.2 - siteid SQL Injection
iScripts EasyCreate 3.2 - siteid SQL Injection Exploit Title: iScripts EasyCreate v3.2 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/easycreate/ Demo: http://www.demo.iscripts.com/easycreate/demo// Version:...
iScripts EasyCreate 3.2 - 'siteid' SQL Injection
Exploit Title: iScripts EasyCreate v3.2 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/easycreate/ Demo: http://www.demo.iscripts.com/easycreate/demo// Version: 3.2 Tested on: Win7 x64, Kali Linux x64 Exploi...
iScripts EasyCreate Remote Code Execution Vulnerability
iScripts EasyCreate is an online website builder that can be used on a server to provide website building services to clients and is fully customizable. A remote code execution vulnerability exists in iScripts EasyCreate. The 'userImages' POST parameter of the '/ajaximageupload.php' script fails ...