Lucene search
K

301 matches found

CVE
CVE
added 2018/04/04 7:0 a.m.61 views

CVE-2018-9236

CVE-2018-9236 is a stored XSS vulnerability in iScripts EasyCreate 3.2.1 affecting the Site title (and Site Description per PoC) fields. Exploitation requires data input stored server-side and later rendered, enabling script execution in victims’ browsers. The CVSS metrics from NVD show a base sc...

5.4CVSS5.3AI score0.01882EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2018/04/04 7:0 a.m.28 views

CVE-2018-9236

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field...

5.3AI score0.01882EPSS
Exploits4References2
Cvelist
Cvelist
added 2018/04/04 7:0 a.m.32 views

CVE-2018-9237

iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field...

5.3AI score0.01882EPSS
Exploits4References2
CVE
CVE
added 2018/04/04 7:0 a.m.54 views

CVE-2018-9235

CVE-2018-9235 affects iScripts SonicBB 1.0. The vulnerability is a Reflected Cross-Site Scripting via the query parameter to search.php, enabling injection of arbitrary script/HTML. Public materials describe a PoC and an exploit for the vulnerable URL (search.php?query=...). The CNVD entry notes ...

6.1CVSS6AI score0.02606EPSS
Exploits5References2Affected Software1
CNVD
CNVD
added 2018/04/04 12:0 a.m.3 views

iScripts EasyCreate Cross-Site Scripting Vulnerability

IScripts EasyCreate is a set of online website builder from Iscripts, Inc. The tool can be used on the server for the client to provide website building services , belong to the fully customizable . A cross-site scripting vulnerability exists in the Site Description field in IScripts EasyCreate...

5.4CVSS6.1AI score0.01882EPSS
Exploits4References1
CNVD
CNVD
added 2018/04/04 12:0 a.m.3 views

iScripts EasyCreate cross-site scripting vulnerability (CNVD-2018-08315)

IScripts EasyCreate is a set of online website builder from Iscripts, Inc. The tool can be used on the server for the client to provide website building services , belong to the fully customizable . A cross-site scripting vulnerability exists in the Site title field in IScripts EasyCreate version...

5.4CVSS6.1AI score0.01882EPSS
Exploits4References1
exploitpack
exploitpack
added 2017/02/04 12:0 a.m.29 views

iScripts EasyCreate 3.2 - siteid SQL Injection

iScripts EasyCreate 3.2 - siteid SQL Injection Exploit Title: iScripts EasyCreate v3.2 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/easycreate/ Demo: http://www.demo.iscripts.com/easycreate/demo// Version:...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2017/02/04 12:0 a.m.9 views

iScripts AutoHoster 3.0 - siteid SQL Injection

iScripts AutoHoster 3.0 - siteid SQL Injection Exploit Title: iScripts AutoHoster v3.0 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/autohoster/ Demo: http://www.demo.iscripts.com/autohoster/demo/ Version:...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/02/04 12:0 a.m.46 views

iScripts EasyCreate 3.2 - 'siteid' SQL Injection

Exploit Title: iScripts EasyCreate v3.2 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/easycreate/ Demo: http://www.demo.iscripts.com/easycreate/demo// Version: 3.2 Tested on: Win7 x64, Kali Linux x64 Exploi...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/02/04 12:0 a.m.34 views

iScripts AutoHoster 3.0 - 'siteid' SQL Injection

Exploit Title: iScripts AutoHoster v3.0 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/autohoster/ Demo: http://www.demo.iscripts.com/autohoster/demo/ Version: 3.0 Tested on: Win7 x64, Kali Linux x64 Exploit...

7.4AI score
Exploits0
CNVD
CNVD
added 2016/04/19 12:0 a.m.4 views

iScripts EasyCreate Remote Code Execution Vulnerability

iScripts EasyCreate is an online website builder that can be used on a server to provide website building services to clients and is fully customizable. A remote code execution vulnerability exists in iScripts EasyCreate. The 'userImages' POST parameter of the '/ajaximageupload.php' script fails ...

8.5AI score
Exploits0References1
0day.today
0day.today
added 2016/02/01 12:0 a.m.41 views

iScripts EasyCreate 3.0 - Multiple Vulnerabilities

Exploit for php platform in category web applications iScripts EasyCreate 3.0 Multiple Vulnerabilities Vendor Product Description - iScripts EasyCreate is a private label online website builder. This software allows you to start an online business by offering website building services to your...

7.1AI score
Exploits0
0day.today
0day.today
added 2016/02/01 12:0 a.m.38 views

iScripts EasyCreate 3.0 - Remote Code Execution

Exploit for php platform in category web applications !C:/Python27/python.exe -u iScripts EasyCreate 3.0 Remote Code Execution Exploit Vendor: iScripts.com Product web page: http://www.iscripts.com Affected version: 3.0 Summary: iScripts EasyCreate is a private label online website builder. This...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2016/02/01 12:0 a.m.33 views

iScripts EasyCreate 3.0 - Remote Code Execution

iScripts EasyCreate 3.0 - Remote Code Execution !C:/Python27/python.exe -u iScripts EasyCreate 3.0 Remote Code Execution Exploit Vendor: iScripts.com Product web page: http://www.iscripts.com Affected version: 3.0 Summary: iScripts EasyCreate is a private label online website builder. This softwa...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/02/01 12:0 a.m.43 views

iScripts EasyCreate 3.0 - Remote Code Execution

!C:/Python27/python.exe -u iScripts EasyCreate 3.0 Remote Code Execution Exploit Vendor: iScripts.com Product web page: http://www.iscripts.com Affected version: 3.0 Summary: iScripts EasyCreate is a private label online website builder. This software allows you to start an online business by...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/01/29 12:0 a.m.27 views

iScripts EasyCreate 3.0 XSS / CSRF / SQL Injection

iScripts EasyCreate 3.0 Multiple Vulnerabilities Vendor Product Description - iScripts EasyCreate is a private label online website builder. This software allows you to start an online business by offering website building services to your customers. Equipped with drag and drop design...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2016/01/29 12:0 a.m.36 views

iScripts EasyCreate 3.0 Remote Code Execution

!C:/Python27/python.exe -u iScripts EasyCreate 3.0 Remote Code Execution Exploit Vendor: iScripts.com Product web page: http://www.iscripts.com Affected version: 3.0 Summary: iScripts EasyCreate is a private label online website builder. This software allows you to start an online business by...

0.1AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2016/01/28 12:0 a.m.44 views

iScripts EasyCreate 3.0 Remote Code Execution Exploit

Summary iScripts EasyCreate is a private label online website builder. This software allows you to start an online business by offering website building services to your customers. Equipped with drag and drop design functionality, crisp templates and social sharing capabilities, this online websi...

6.2AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2016/01/28 12:0 a.m.34 views

iScripts EasyCreate 3.0 Multiple Vulnerabilities

Summary iScripts EasyCreate is a private label online website builder. This software allows you to start an online business by offering website building services to your customers. Equipped with drag and drop design functionality, crisp templates and social sharing capabilities, this online websi...

5.9AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

iScripts CyberMatch 1.0 - Blind SQL Injection Vulnerability

No description provided by source. iScripts CyberMatch 1.0 Blind SQL Injection Vulnerability Name iScripts CyberMatch Vendor http://www.iscripts.com Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date...

7.1AI score
Exploits0
Rows per page
Query Builder