Lucene search
K

17 matches found

CNNVD
CNNVD
added 2021/04/14 12:0 a.m.7 views

Appspace 授权问题漏洞

Appspace is an application from the US-based Appspace Inc. Provides built-in content strategies to easily implement and execute team communication programs. Appspace version 6.2.4 suffers from an authorization issue vulnerability that stems from being susceptible to authentication mechanism...

7.5CVSS5.7AI score0.01424EPSS
Exploits0References3
Prion
Prion
added 2019/05/27 11:29 p.m.17 views

Cross site request forgery (csrf)

EmpireCMS 7.5.0 has XSS via the from parameter to e/member/doaction.php, as demonstrated by a CSRF payload that changes the dynamic page template. The attacker can choose to resend the e/template/member/regsend.php registered activation mail page...

4.3CVSS6AI score0.00413EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/08/05 6:0 p.m.26 views

CVE-2018-14954

The mail message display page in SquirrelMail through 1.4.22 has XSS via the formaction attribute...

6.2AI score0.01647EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2018/04/12 12:0 a.m.7 views

The vulnerability of the ChkAdminViewUsrPwd1 component in the Advantech WebAccess remote monitoring software allows a perpetrator to execute arbitrary code.

The vulnerability of the ChkAdminViewUsrPwd1 component mailPg.asp in the Advantech WebAccess remote monitoring software is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the ProjectName and...

9.8CVSS6.2AI score0.06009EPSS
Exploits4References6Affected Software1
Openbugbounty
Openbugbounty
added 2018/02/16 8:17 a.m.10 views

anymaritime.com XSS vulnerability

Open Bug Bounty ID: OBB-560716 Description| Value ---|--- Affected Website:| anymaritime.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
0day.today
0day.today
added 2015/05/27 12:0 a.m.25 views

WordPress Video Gallery Plugin 2.8 Arbitrary Mail Relay Vulnerability

Exploit for php platform in category web applications Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage :...

7.1AI score
Exploits0
Patchstack
Patchstack
added 2015/05/26 12:0 a.m.13 views

WordPress Video Gallery Plugin 2.8 - Arbitrary Mail Relay

There is Unprotected Mail Page in this plugin. The vulnerability allows phishing, mailbombing, spam, also, it is exploitable to DOS. Solution Update the plugin...

3.5AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2015/05/26 12:0 a.m.25 views

WordPress Plugin Video Gallery 2.8 - Arbitrary Mail Relay

Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/05/26 12:0 a.m.11 views

WordPress Plugin Video Gallery 2.8 - Arbitrary Mail Relay

WordPress Plugin Video Gallery 2.8 - Arbitrary Mail Relay Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage :...

0.6AI score
Exploits0
0day.today
0day.today
added 2015/05/23 12:0 a.m.21 views

WordPress Video Gallery 2.8 Unprotected Mail Page Vulnerability

Exploit for php platform in category web applications Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/05/22 12:0 a.m.23 views

WordPress Video Gallery 2.8 Unprotected Mail Page

Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software...

0.8AI score
Exploits0
Patchstack
Patchstack
added 2015/04/05 12:0 a.m.12 views

WordPress Video Gallery Plugin <= 2.8 - Unprotected Mail Page

This plugin is prone to an unprotected mail page vulnerability. Solution Update the plugin...

3.2AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/04/05 12:0 a.m.8 views

WordPress Video Gallery <= 2.8 - Unprotected Mail Page

Any user can send email from /contus-video-gallery/email.php to any recipients...

2.2AI score
Exploits0References2Affected Software1
Atlassian
Atlassian
added 2010/08/25 2:4 a.m.22 views

XSRF vulnerability in the Mail Page plugin

We have identified and fixed a cross-site request forgery XSRF vulnerability which may affect Confluence instances in a public environment. The XSRF vulnerability is exposed in the Confluence Mail Page plugin. Note that the Mail Page plugin is disabled by default. If you do not have this plugin...

6.8AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2010/08/25 2:4 a.m.14 views

XSRF vulnerability in the Mail Page plugin

We have identified and fixed a cross-site request forgery XSRF vulnerability which may affect Confluence instances in a public environment. The XSRF vulnerability is exposed in the Confluence Mail Page plugin. Note that the Mail Page plugin is disabled by default. If you do not have this plugin...

6.8AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2010/08/25 2:4 a.m.19 views

XSRF vulnerability in the Mail Page plugin

We have identified and fixed a cross-site request forgery XSRF vulnerability which may affect Confluence instances in a public environment. The XSRF vulnerability is exposed in the Confluence Mail Page plugin. Note that the Mail Page plugin is disabled by default. If you do not have this plugin...

6.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2005/11/23 12:0 a.m.6 views

PT-2005-4523 · Php · Php-Post

Name of the Vulnerable Software and Affected Versions: PHP-Post PHPp version 1.0 Description: The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting XSS attacks. This can be achieved through the subject in a post or by manipulating th...

4.3CVSS6.1AI score0.0412EPSS
Exploits1References11
Rows per page
Query Builder