Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Openbugbounty
Openbugbountyadded 2018/10/16 6:17 p.m.8 views

czechms.org XSS vulnerability

Open Bug Bounty ID: OBB-686971 Description| Value ---|--- Affected Website:| czechms.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbountyadded 2018/02/06 8:16 p.m.9 views

fanfics.me XSS vulnerability

Open Bug Bounty ID: OBB-554203 Description| Value ---|--- Affected Website:| fanfics.me Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
ThreatPost
ThreatPostadded 2016/01/18 12:1 p.m.11 views

LastPass Mitigates LostPass Phishing Attack

LastPass has taken measures to mitigate a phishing attack described this weekend at ShmooCon that put at risk users’ credentials and information stored by the password manager. Researcher Sean Cassidy, chief technology officer of cloud security company Praesidio, demonstrated an attack where he w...

6.9AI score
Exploits0References3
Cvelist
Cvelistadded 2012/09/20 10:0 a.m.16 views

CVE-2011-5190

Multiple cross-site scripting XSS vulnerabilities in Social Book Facebook Clone 2010 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO parameter to 1 signup.php, 2 lostpass.php, 3 login.php, 4 index.php, 5 helptos.php, 6 helpcontact.php, or 7 help.php...

5.8AI score0.0034EPSS
Exploits1References5
NVD
NVDadded 2008/01/08 7:46 p.m.8 views

CVE-2008-0141

actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote attackers to obtain access to any account via a lostpass action...

7.5CVSS7.4AI score0.0588EPSS
Exploits1References3
Prion
Prionadded 2008/01/08 7:46 p.m.10 views

Deserialization of untrusted data

actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote attackers to obtain access to any account via a lostpass action...

7.5CVSS7AI score0.0588EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2008/01/08 7:0 p.m.18 views

CVE-2008-0141

actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote attackers to obtain access to any account via a lostpass action...

7.4AI score0.0588EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2008/01/08 12:0 a.m.2 views

PT-2008-1794 · Webportal · Webportal Cms

Name of the Vulnerable Software and Affected Versions: WebPortal CMS version 0.6-beta Description: The issue allows remote attackers to obtain access to any account via a lostpass action because the actions.php file in WebPortal CMS generates predictable passwords containing only the time of day...

7.5CVSS7.5AI score0.0588EPSS
Exploits1References5
Rows per page
Query Builder