Lucene search
K

41 matches found

OSV
OSV
added 2019/04/30 7:29 p.m.3 views

CVE-2018-14931

An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. An open redirect exists via a /IntellectMain.jsp?IntellectSystem= URI...

6.1CVSS5.8AI score0.02398EPSS
Exploits1References1
NVD
NVD
added 2019/04/30 7:29 p.m.19 views

CVE-2018-14930

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...

8.8CVSS8.6AI score0.00636EPSS
Exploits1References1
Prion
Prion
added 2019/04/30 7:29 p.m.19 views

Open redirect

An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. An open redirect exists via a /IntellectMain.jsp?IntellectSystem= URI...

5.8CVSS6.1AI score0.02398EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/04/30 7:29 p.m.26 views

Cross site request forgery (csrf)

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...

6.8CVSS8.5AI score0.00636EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/04/30 7:29 p.m.16 views

Sql injection

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being used in SQL queries, allowing SQL injecti...

6.5CVSS9AI score0.01384EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/04/30 6:56 p.m.38 views

CVE-2018-14930

The CVE-2018-14930 entry concerns the Polaris FT Intellect Core Banking 9.7.1 Armor module where a CSRF vulnerability can be triggered via the URI /CollatWebApp/gcmsRefInsert?name=SUPP. The incident is documented in multiple sources (NVD, CVE pages, and Prion/CVELIST records) with consistent desc...

8.8CVSS8.5AI score0.00636EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/30 6:56 p.m.28 views

CVE-2018-14930

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...

8.6AI score0.00636EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/04/30 6:54 p.m.21 views

CVE-2018-14874

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being used in SQL queries, allowing SQL injecti...

9.1AI score0.01384EPSS
Exploits1References1
CVE
CVE
added 2019/04/30 6:54 p.m.39 views

CVE-2018-14874

The CVE-2018-14874 entry concerns Polaris FT Intellect Core Banking 9.7.1 (Armor module). The vulnerability arises when user input passed through the code parameter on three JSP pages (collaterals/colexe3t.jsp, /references/refsuppu.jsp, /references/refbranu.jsp) is mishandled before being embedde...

8.8CVSS8.9AI score0.01384EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/30 6:52 p.m.15 views

CVE-2018-14875

An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. Reflected XSS exists with an authenticated session via the Customerid, formName, FrameId, or MODE parameter...

5.3AI score0.00661EPSS
Exploits1References1
CVE
CVE
added 2019/04/30 6:52 p.m.40 views

CVE-2018-14875

The CVE-2018-14875 entry applies to Polaris FT Intellect Core Banking 9.7.1 (Core and Portal modules). The issue is a Reflected XSS vulnerability that can occur within an authenticated session via the Customerid, formName, FrameId, or MODE parameters. The available references document the vulnera...

5.4CVSS5.2AI score0.00661EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/30 6:50 p.m.25 views

CVE-2018-14931

An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. An open redirect exists via a /IntellectMain.jsp?IntellectSystem= URI...

6.2AI score0.02398EPSS
Exploits1References1
CVE
CVE
added 2019/04/30 6:50 p.m.65 views

CVE-2018-14931

Polarisft Intellect Core Banking Software Version 9.7.1 contains an open redirect in the Core and Portal modules reachable via /IntellectMain.jsp?IntellectSystem=. The open redirect could allow an attacker to redirect users to a malicious site, enabling phishing or credential-stealing scenarios. ...

6.1CVSS6.1AI score0.02398EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2017/07/07 12:0 a.m.5 views

Intellect Design Arena Intellect Core banking software cross-site scripting vulnerability

Intellect Design Arena Intellect Core banking software is a banking management system from Intellect Design Arena India. A cross-site scripting vulnerability exists in Intellect Design Arena Intellect Core banking software. A remote attacker can exploit this vulnerability to execute arbitrary JS...

6.1CVSS6.3AI score0.00783EPSS
Exploits3References1
NVD
NVD
added 2017/06/07 8:29 p.m.20 views

CVE-2015-6540

Cross-site scripting XSS vulnerability in Intellect Design Arena Intellect Core banking software...

6.1CVSS6.1AI score0.00783EPSS
Exploits3References2
Prion
Prion
added 2017/06/07 8:29 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Intellect Design Arena Intellect Core banking software...

4.3CVSS6.2AI score0.00783EPSS
Exploits3References2
Cvelist
Cvelist
added 2017/06/07 8:0 p.m.27 views

CVE-2015-6540

Cross-site scripting XSS vulnerability in Intellect Design Arena Intellect Core banking software...

6.1AI score0.00783EPSS
Exploits3References2
CVE
CVE
added 2017/06/07 8:0 p.m.37 views

CVE-2015-6540

CVE-2015-6540 describes a Cross-Site Scripting (XSS) vulnerability in Intellect Design Arena Intellect Core banking software (Armar module). The connected 0day/The vulnerability details indicate an arbitrary client-side JavaScript execution capability after login via a crafted link, potentially e...

6.1CVSS6AI score0.00783EPSS
Exploits3References2Affected Software1
0day.today
0day.today
added 2015/12/13 12:0 a.m.76 views

Intellect Core Cross Site Scripting Vulnerability

Intellect Core banking software suffers from a cross site scripting vulnerability. Vendor: ==================== Intellect Design Arena Polaris Product: =================== Intellect Core banking software Armar module Vulnerability Type: ========================== Cross site scripting - XSS CVE...

4.3CVSS6.3AI score0.00783EPSS
Exploits3
Packet Storm
Packet Storm
added 2015/12/11 12:0 a.m.36 views

Intellect Core Cross Site Scripting

Credits: Mayank Sahu + Email: [email protected] Vendor: ==================== Intellect Design Arena Polaris Product: =================== Intellect Core banking software Armar module Vulnerability Type: ========================== Cross site scripting - XSS CVE Reference: ==============...

6.4AI score0.00783EPSS
Exploits3
Rows per page
Query Builder