CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-9163

Malware in sbrugna...

6.1CVSS6.3AI score0.00211EPSS

Exploits2References3

CNVD•added 2018/01/12 12:0 a.m.•2 views

Office Tracker 'logincount' Parameter Cross-Site Scripting Vulnerability

Office Tracker is a work scheduling software package. The software features appointment scheduling, room and facility scheduling, meeting scheduling, and employee scheduling. A cross-site scripting vulnerability exists in Office Tracker version 11.2.5. A remote attacker can exploit this...

6.1CVSS6.2AI score0.00211EPSS

Exploits2References1

OSV•added 2018/01/10 6:29 p.m.•0 views

CVE-2017-18023

Office Tracker 11.2.5 has XSS via the logincount parameter to the /otweb/OTPClientLogin URI...

6.1CVSS5.8AI score

Exploits0References1

Prion•added 2018/01/10 6:29 p.m.•8 views

Code injection

Office Tracker 11.2.5 has XSS via the logincount parameter to the /otweb/OTPClientLogin URI...

4.3CVSS5.9AI score0.00211EPSS

Exploits2References1Affected Software1

Cvelist•added 2018/01/10 6:0 p.m.•10 views

CVE-2017-18023

Office Tracker 11.2.5 has XSS via the logincount parameter to the /otweb/OTPClientLogin URI...

6.1AI score0.00211EPSS

Exploits2References1

CVE•added 2018/01/10 6:0 p.m.•39 views

CVE-2017-18023

Office Tracker 11.2.5 has a Cross-Site Scripting (XSS) vulnerability exposed via the logincount parameter to the /otweb/OTPClientLogin URI. The logincount value is copied into the HTML response as plain text, allowing an attacker to inject arbitrary script (example from public payloads shows a sc...

6.1CVSS5.9AI score0.00211EPSS

Exploits2References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by