Lucene search
K

301 matches found

CVE
CVE
added 2018/04/11 8:0 p.m.41 views

CVE-2018-10052

The affected software is iScripts SupportDesk v4.3. The vulnerability is a cross-site scripting (XSS) flaw exploitable via the admin/inteligentsearchresult.php txtinteligentsearch parameter. Root cause (as stated in connected documents) is improper input handling in that parameter leading to scri...

4.8CVSS4.9AI score0.00559EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/04/11 8:0 p.m.25 views

CVE-2018-10051

iScripts SupportDesk v4.3 has XSS via the staff/inteligentsearchresult.php txtinteligentsearch parameter...

5.3AI score0.00556EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2018/04/10 12:0 a.m.34 views

iScripts SonicBB 1.0 Cross Site Scripting

Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9235 1. Description...

6.4AI score0.02606EPSS
Exploits5
0day.today
0day.today
added 2018/04/10 12:0 a.m.32 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows 10 Category: Webapps...

0.2AI score0.02606EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/04/10 12:0 a.m.49 views

iScripts Easycreate 3.2.1 Cross Site Scripting

Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9236 CVE:...

0.2AI score0.01882EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/04/10 12:0 a.m.32 views

iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting

Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9236 CVE:...

5.4CVSS5.5AI score0.01882EPSS
Exploits5
exploitpack
exploitpack
added 2018/04/10 12:0 a.m.32 views

iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting

iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/easycreate/demo/ Version: 3.2.1 Tested on:...

3.5CVSS0.2AI score0.01882EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/04/09 12:0 a.m.30 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting (PoC)

Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows 10 Category: Webapps CVE: CVE-2018-9235 1. Description...

6.1CVSS6.3AI score0.02606EPSS
Exploits5
exploitpack
exploitpack
added 2018/04/09 12:0 a.m.31 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting (PoC)

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting PoC Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Date: 02/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows ...

4.3CVSS0.02606EPSS
Exploits5
NVD
NVD
added 2018/04/04 7:29 a.m.22 views

CVE-2018-9235

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

6.1CVSS6.1AI score0.02606EPSS
Exploits5References2
NVD
NVD
added 2018/04/04 7:29 a.m.17 views

CVE-2018-9237

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...

5.4CVSS5.3AI score0.01882EPSS
Exploits4References2
Prion
Prion
added 2018/04/04 7:29 a.m.16 views

Cross site scripting

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...

3.5CVSS5.3AI score0.01882EPSS
Exploits4References2Affected Software1
OSV
OSV
added 2018/04/04 7:29 a.m.5 views

CVE-2018-9237

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...

5.4CVSS5.8AI score0.01882EPSS
Exploits4References2
Prion
Prion
added 2018/04/04 7:29 a.m.14 views

Cross site scripting

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...

3.5CVSS5.3AI score0.01882EPSS
Exploits4References2Affected Software1
OSV
OSV
added 2018/04/04 7:29 a.m.6 views

CVE-2018-9235

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

6.1CVSS5.8AI score0.02606EPSS
Exploits5References2
OSV
OSV
added 2018/04/04 7:29 a.m.5 views

CVE-2018-9236

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...

5.4CVSS5.8AI score0.01882EPSS
Exploits4References2
NVD
NVD
added 2018/04/04 7:29 a.m.21 views

CVE-2018-9236

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...

5.4CVSS5.3AI score0.01882EPSS
Exploits4References2
Prion
Prion
added 2018/04/04 7:29 a.m.13 views

Cross site scripting

iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php...

4.3CVSS6AI score0.02606EPSS
Exploits5References2Affected Software1
CVE
CVE
added 2018/04/04 7:0 a.m.54 views

CVE-2018-9235

CVE-2018-9235 affects iScripts SonicBB 1.0. The vulnerability is a Reflected Cross-Site Scripting via the query parameter to search.php, enabling injection of arbitrary script/HTML. Public materials describe a PoC and an exploit for the vulnerable URL (search.php?query=...). The CNVD entry notes ...

6.1CVSS6AI score0.02606EPSS
Exploits5References2Affected Software1
CVE
CVE
added 2018/04/04 7:0 a.m.50 views

CVE-2018-9237

Summary (CVE-2018-9237) : iScripts EasyCreate 3.2.1 contains a stored Cross-Site Scripting (XSS) vulnerability in the Site Description field (and also Site Title per sources). The weakness allows injected HTML/JS to be stored and later executed in the context of the affected application, enabling...

5.4CVSS5.3AI score0.01882EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder