Lucene search
K

13 matches found

CNVD
CNVD
added 2018/03/07 12:0 a.m.6 views

Kubik-Rubik Simple Image Gallery Extended Cross-Site Scripting Vulnerability in Joomla!

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . Kubik-Rubik Simple Image Gallery Extended SIGE extension is to use one of the image management extension component. A cross-si...

6.1CVSS6.3AI score0.00675EPSS
Exploits1References1
OSV
OSV
added 2018/03/05 11:29 p.m.2 views

CVE-2018-7717

The htmlImageAddTitleAttribute function in sige.php in the Kubik-Rubik Simple Image Gallery Extended SIGE extension 3.2.3 for Joomla! has XSS via a crafted image header, as demonstrated by the Caption-Abstract header object in a JPEG file. This is fixed in 3.3.1...

6.1CVSS5.8AI score0.00675EPSS
Exploits1References1
Prion
Prion
added 2018/03/05 11:29 p.m.22 views

Design/Logic Flaw

The htmlImageAddTitleAttribute function in sige.php in the Kubik-Rubik Simple Image Gallery Extended SIGE extension 3.2.3 for Joomla! has XSS via a crafted image header, as demonstrated by the Caption-Abstract header object in a JPEG file. This is fixed in 3.3.1...

4.3CVSS5.8AI score0.00675EPSS
Exploits1References1Affected Software1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2018/02/26 12:0 a.m.114 views

Kubik-Rubik Simple Image Gallery Extended (SIGE),3.2.3,XSS (Cross Site Scripting)

Kubik-Rubik Simple Image Gallery Extended SIGE, versions 3.2.3 and previous, XSS Cross Site Scripting resolution: update to 3.2.4 latest release is 3.3.0 update notice: https://joomla-extensions.kubik-rubik.de/sige-simple-image-gallery-extendedchangelog Note that the developer did not inform the ...

6.1CVSS0.5AI score0.02227EPSS
Exploits5References3Affected Software1
OSV
OSV
added 2018/02/20 3:29 p.m.4 views

CVE-2017-16356

Reflected XSS in Kubik-Rubik SIGE aka Simple Image Gallery Extended before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/pluginsige/print.php link with a crafted img, name, or caption parameter...

6.1CVSS5.8AI score
Exploits0References2
Prion
Prion
added 2018/02/20 3:29 p.m.17 views

Cross site scripting

Reflected XSS in Kubik-Rubik SIGE aka Simple Image Gallery Extended before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/pluginsige/print.php link with a crafted img, name, or caption parameter...

4.3CVSS6AI score0.02227EPSS
Exploits5References2Affected Software1
NVD
NVD
added 2018/02/20 3:29 p.m.28 views

CVE-2017-16356

Reflected XSS in Kubik-Rubik SIGE aka Simple Image Gallery Extended before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/pluginsige/print.php link with a crafted img, name, or caption parameter...

6.1CVSS6.1AI score0.02227EPSS
Exploits5References2
CVE
CVE
added 2018/02/20 3:0 p.m.65 views

CVE-2017-16356

CVE-2017-16356 affects Kubik-Rubik Simple Image Gallery Extended (SIGE) for Joomla. The vulnerability is a reflected XSS in print.php that allows JavaScript injection via crafted parameters (caption; also name/img in older versions). Impact is execution of script in the victim’s browser. Affected...

6.1CVSS5.9AI score0.02227EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2018/02/20 3:0 p.m.30 views

CVE-2017-16356

Reflected XSS in Kubik-Rubik SIGE aka Simple Image Gallery Extended before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/pluginsige/print.php link with a crafted img, name, or caption parameter...

6AI score0.02227EPSS
Exploits5References2
0day.today
0day.today
added 2018/02/17 12:0 a.m.77 views

Joomla Kubik-Rubik Simple Image Gallery Extended (SIGE) 3.2.3 Component - Cross-Site Scripting

Exploit for php platform in category web applications Exploit Title: Joomla! Component SIGE version 3. Solution: Update to version 3.3.0 https://downloads.kubik-rubik.de/joomla-extensions/plgsigev3.3.0.zip 0day.today 2018-04-11...

4.3CVSS6.3AI score0.02227EPSS
Exploits5
exploitpack
exploitpack
added 2018/02/16 12:0 a.m.68 views

Joomla! Component Kubik-Rubik Simple Image Gallery Extended (SIGE) 3.2.3 - Cross-Site Scripting

Joomla! Component Kubik-Rubik Simple Image Gallery Extended SIGE 3.2.3 - Cross-Site Scripting Exploit Title: Joomla! Component SIGE version 3. Solution: Update to version 3.3.0 https://downloads.kubik-rubik.de/joomla-extensions/plgsigev3.3.0.zip...

4.3CVSS6.1AI score0.02227EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/02/16 12:0 a.m.56 views

Joomla Kubik-Rubik SIGE 3.2.3 Cross Site Scripting

Exploit Title: Joomla! Component SIGE version 3. Solution: Update to version 3.3.0 https://downloads.kubik-rubik.de/joomla-extensions/plgsigev3.3.0.zip...

6.4AI score0.02227EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/02/16 12:0 a.m.60 views

Joomla! Component Kubik-Rubik Simple Image Gallery Extended (SIGE) 3.2.3 - Cross-Site Scripting

Exploit Title: Joomla! Component SIGE version 3. Solution: Update to version 3.3.0 https://downloads.kubik-rubik.de/joomla-extensions/plgsigev3.3.0.zip...

6.1CVSS6.5AI score0.02227EPSS
Exploits5
Rows per page
Query Builder