Lucene search
K

20 matches found

Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.28 views

Username spoofing in OnionShare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-005 - Vulnerability type: Improper Input Sanitization -...

4.3CVSS0.6AI score0.00708EPSS
Exploits0References5Affected Software1
Packet Storm
Packet Storm
added 2011/11/17 12:0 a.m.21 views

V-CMS 1.0 Cross Site Scripting

------------------------------------------------------------------------ Software................V-CMS 1.0 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://v-cms.org/ Discovery Date..........11/13/2011 Tested...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/05/24 12:0 a.m.26 views

Kryn.cms 0.9 Cross Site Scripting

------------------------------------------------------------------------ Software................Kryn.cms 0.9 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.kryn.org/ Discovery Date..........5/19/2011 Tested...

Exploits0
Packet Storm
Packet Storm
added 2011/05/16 12:0 a.m.25 views

docMGR 1.1.2 Cross Site Scripting

------------------------------------------------------------------------ Software................docMGR 1.1.2 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.docmgr.org/ Discovery Date..........5/12/2011 Tested...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/05/09 12:0 a.m.18 views

Gelsheet 1.02 Cross Site Scripting

------------------------------------------------------------------------ Software................Gelsheet 1.02 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.gelsheet.org/ Discovery Date..........5/5/2011 Tested...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/05/03 12:0 a.m.16 views

LDAP Account Manager 3.4.0 Cross Site Scripting

------------------------------------------------------------------------ Software................LDAP Account Manager 3.4.0 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.ldap-account-manager.org/ Discovery...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2011/05/03 12:0 a.m.21 views

Time And Expense Management System Cross Site Scripting

------------------------------------------------------------------------ Software................Time and Expense Management System Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://sourceforge.net/projects/tems/ Discovery...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/04/25 12:0 a.m.26 views

phpmychat plus 1.93 - Multiple Vulnerabilities

------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Blind SQL Injection Threat Level............Serious 3/5 Download................http://sourceforge.net/projects/phpmychat/ Discovery Date..........4/25/2011...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/04/25 12:0 a.m.31 views

webERP 4.03.08 Cross Site Scripting

------------------------------------------------------------------------ --Description-- A reflected cross-site scripting vulnerability in webERP 4.03.8 can be exploited to execute arbitrary JavaScript. --PoC-- alert0" /...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/04/22 12:0 a.m.26 views

Todayu 2.0.8 Cross Site Scripting

------------------------------------------------------------------------ Software................Todoyu 2.0.8 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.todoyu.com Discovery Date..........4/21/2011 Tested...

Exploits0
Packet Storm
Packet Storm
added 2011/04/22 12:0 a.m.20 views

Dolibarr 3.0.0 Cross Site Scripting

------------------------------------------------------------------------ Software................Dolibarr 3.0.0 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.dolibarr.org/ Discovery Date..........4/21/2011 Tested...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/04/07 12:0 a.m.15 views

eGroupware 1.8.001 Cross Site Scripting

------------------------------------------------------------------------ Software................eGroupware 1.8.001 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.egroupware.org/ Discovery Date..........4/7/2011 Tested...

0.1AI score
Exploits0
0day.today
0day.today
added 2011/04/07 12:0 a.m.17 views

eyeOS 2.3 Multiple Vulnerabilities

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................eyeOS 2.3 Vulnerability...........Local File Inclusion Threat Level............Critical 4/5 Download................http://www.eyeos.org/ Discover...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/04/07 12:0 a.m.28 views

eXtplorer 2.1 RC3 Cross Site Request Forgery

------------------------------------------------------------------------ --Description-- A cross-site request forgery vulnerability in eXtplorer 2.1 RC3 can be exploited to create a new admin. --PoC-- input type="hidden"...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2011/04/04 12:0 a.m.21 views

OpenEMR 4.0.0 Database Manipulation

------------------------------------------------------------------------ Software................OpenEMR 4.0.0 Vulnerability...........Arbitrary Database Creation/Database Enumeration Threat Level............Low 1/5 Download................http://www.oemr.org/ Discovery Date..........4/2/2011...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/29 12:0 a.m.26 views

osCSS2 2.1.0 RC12 Cross Site Scripting

------------------------------------------------------------------------ Software................osCSS2 2.1.0 RC12 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.oscss.org/ Disclosure Date.........4/6/2011 Tested...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/27 12:0 a.m.31 views

FengOffice 1.7.4 Cross Site Scripting

------------------------------------------------------------------------ --Description-- A reflected cross-site scripting vulnerability in FengOffice 1.7.4 can be exploited to execute arbitrary JavaScript. --PoC-- alert0" / alert0" /...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/07 12:0 a.m.17 views

Interleave 5.5.0.2 Cross Site Scripting

------------------------------------------------------------------------ Software................Interleave 5.5.0.2 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://www.interleave.nl/en/ Release Date............3/3/2011 Tested...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/07 12:0 a.m.26 views

Support Incident Tracker 3.62 Cross Site Scripting

------------------------------------------------------------------------ Software................Support Incident Tracker 3.62 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://sitracker.org/ Release Date............3/3/2011 Test...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/05/15 12:0 a.m.27 views

Security Advisory: (BEA04-60.00)

Security Advisory: BEA04-60.00 From: BEA Systems Inc. Minor Subject: Patches are available to protect user authorizations. Products Affected: WebLogic Server and WebLogic Express Threat level: Low - The vulnerability requires an attacker to be assigned the Admin or Operator security role. Severit...

1.1AI score
Exploits0
Rows per page
Query Builder