Lucene search
+L

50 matches found

OSV
OSV
added 2019/06/25 1:15 p.m.5 views

CVE-2019-12963

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the chat.php Create Ticket Action...

6.1CVSS6.4AI score0.00817EPSS
Exploits1References1
OSV
OSV
added 2019/06/25 1:15 p.m.5 views

CVE-2019-12964

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the ticket.php Subject...

6.1CVSS6.4AI score0.00817EPSS
Exploits1References1
NVD
NVD
added 2019/06/25 1:15 p.m.30 views

CVE-2019-12962

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in mobile/index.php via the Accept-Language HTTP header...

6.1CVSS6AI score0.09052EPSS
Exploits4References2
NVD
NVD
added 2019/06/25 1:15 p.m.16 views

CVE-2019-12963

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the chat.php Create Ticket Action...

6.1CVSS6AI score0.00817EPSS
Exploits1References1
OSV
OSV
added 2019/06/25 1:15 p.m.6 views

CVE-2019-12960

LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter pdtsd...

9.8CVSS7.4AI score0.01435EPSS
Exploits1References1
OSV
OSV
added 2019/06/25 1:15 p.m.5 views

CVE-2019-12962

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in mobile/index.php via the Accept-Language HTTP header...

6.1CVSS6.6AI score0.09052EPSS
Exploits4References2
NVD
NVD
added 2019/06/25 1:15 p.m.12 views

CVE-2019-12960

LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter pdtsd...

9.8CVSS9.8AI score0.01435EPSS
Exploits1References1
NVD
NVD
added 2019/06/25 1:15 p.m.11 views

CVE-2019-12961

LiveZilla Server before 8.0.1.1 is vulnerable to CSV Injection in the Export Function...

8.8CVSS8.8AI score0.01389EPSS
Exploits1References1
Prion
Prion
added 2019/06/25 1:15 p.m.16 views

Deserialization of untrusted data

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the chat.php Create Ticket Action...

4.3CVSS5.9AI score0.00817EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/06/25 1:15 p.m.14 views

Design/Logic Flaw

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the ticket.php Subject...

4.3CVSS5.9AI score0.00817EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/06/25 1:15 p.m.17 views

Input validation

LiveZilla Server before 8.0.1.1 is vulnerable to CSV Injection in the Export Function...

6.8CVSS8.8AI score0.01389EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/06/25 1:15 p.m.22 views

Design/Logic Flaw

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in mobile/index.php via the Accept-Language HTTP header...

4.3CVSS5.8AI score0.09052EPSS
Exploits4References2Affected Software1
Prion
Prion
added 2019/06/25 1:15 p.m.18 views

Sql injection

LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter pdtsd...

7.5CVSS9.7AI score0.01435EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/06/25 12:56 p.m.20 views

CVE-2019-12964

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the ticket.php Subject...

6AI score0.00817EPSS
Exploits1References1
CVE
CVE
added 2019/06/25 12:56 p.m.71 views

CVE-2019-12964

LiveZilla Server is affected by CVE-2019-12964: a cross-site scripting (XSS) vulnerability in the ticket.php Subject, present in versions prior to 8.0.1.1. Red Hat and NVD entries confirm the issue and indicate remediation via upgrading to 8.0.1.1 or later. The vulnerability is triggered by craft...

6.1CVSS5.9AI score0.00817EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/06/25 12:55 p.m.16 views

CVE-2019-12963

LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the chat.php Create Ticket Action...

6AI score0.00817EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/06/25 12:55 p.m.15 views

CVE-2019-12961

LiveZilla Server before 8.0.1.1 is vulnerable to CSV Injection in the Export Function...

9.2AI score0.01389EPSS
Exploits1References1
CVE
CVE
added 2019/06/25 12:55 p.m.72 views

CVE-2019-12961

Affected software: LiveZilla Server prior to 8.0.1.1. Issue: CSV injection via the Export Function. Root cause: lack of input sanitization/export handling enabling CSV payloads in exported data. Impact (as described): vulnerability exists in the export feature; CVSS details are provided but the p...

8.8CVSS9.1AI score0.01389EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/06/25 12:55 p.m.73 views

CVE-2019-12960

LiveZilla Server contains a SQL Injection vulnerability in functions.internal.build.inc.php via the parameter p_dt_s_d, affecting versions prior to 8.0.1.1. The issue allows an attacker to execute illegal SQL commands with the potential for data disclosure or modification. The CVE entry is corrob...

9.8CVSS9.8AI score0.01435EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/06/25 12:55 p.m.11 views

CVE-2019-12960

LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter pdtsd...

9.9AI score0.01435EPSS
Exploits1References1
Rows per page
Query Builder