Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31967

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.22002EPSS
Exploits4References4
Packet Storm
Packet Storm
added 2024/05/09 12:0 a.m.449 views

iboss Secure Web Gateway Cross Site Scripting

Exploit Title: iboss Secure Web Gateway - Stored Cross-Site Scripting XSS Date: 4/4/2024 Exploit Author: modrnProph3t Vendor Homepage: https://www.iboss.com Version: userName=TEST&x=TEST&action=login&redirectUrl= 3. Insert XSS payload into the "redirectUrl" parameter Example of request with...

6.1CVSS7.4AI score0.22002EPSS
Exploits4
0day.today
0day.today
added 2024/05/08 12:0 a.m.345 views

iboss Secure Web Gateway - Stored Cross-Site Scripting Vulnerability

Exploit Title: iboss Secure Web Gateway - Stored Cross-Site Scripting XSS Exploit Author: modrnProph3t Vendor Homepage: https://www.iboss.com Version: userName=TEST&x=TEST&action=login&redirectUrl= 3. Insert XSS payload into the "redirectUrl" parameter Example of request with inserted payload: PO...

6.1CVSS7.4AI score0.22002EPSS
Exploits4
Exploit DB
Exploit DB
added 2024/05/08 12:0 a.m.351 views

iboss Secure Web Gateway - Stored Cross-Site Scripting (XSS)

Exploit Title: iboss Secure Web Gateway - Stored Cross-Site Scripting XSS Date: 4/4/2024 Exploit Author: modrnProph3t Vendor Homepage: https://www.iboss.com Version: userName=TEST&x=TEST&action=login&redirectUrl= 3. Insert XSS payload into the "redirectUrl" parameter Example of request with...

6.1CVSS5.1AI score0.22002EPSS
Exploits4
OSV
OSV
added 2024/04/06 1:15 p.m.3 views

CVE-2024-3378

A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login of the component Login Portal. The manipulation of the argument redirectUrl leads to cross site scripting. The attack...

6.1CVSS3.5AI score0.22002EPSS
Exploits4References4
NVD
NVD
added 2024/04/06 1:15 p.m.41 views

CVE-2024-3378

A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login of the component Login Portal. The manipulation of the argument redirectUrl leads to cross site scripting. The attack...

6.1CVSS5AI score0.22002EPSS
Exploits4References4
Cvelist
Cvelist
added 2024/04/06 12:31 p.m.40 views

CVE-2024-3378 iboss Secure Web Gateway Login Portal login cross site scripting

A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login of the component Login Portal. The manipulation of the argument redirectUrl leads to cross site scripting. The attack...

5CVSS6.1AI score0.22002EPSS
Exploits4References4
CVE
CVE
added 2024/04/06 12:31 p.m.77 views

CVE-2024-3378

Affected product/versions: iboss Secure Web Gateway up to 10.1. The issue resides in the Login Portal’s /login path, where manipulating the redirectUrl parameter can trigger a cross-site scripting (XSS) vulnerability. Root cause: improper handling of redirectUrl within the login flow. Impact: rem...

6.1CVSS4.7AI score0.22002EPSS
Exploits4References4Affected Software1
Rows per page
Query Builder